Tóm lược
Mô tả công việc
Tóm tắt công việc
Are you passionate about cybersecurity and ready to take a hands-on role in driving the evolution of our security operations? As a Medior/Senior Security Operations Engineer - DevSecOps at Aurify, you’ll play a pivotal role in building and refining our Google Security Operations Center (SOC), with a specific focus on SIEM and SOAR automation.
You will be part of our Security Operations team, responsible for monitoring and escalating security alerts across our infrastructure and implementing cutting-edge security procedures. This role goes beyond production security—it encompasses securing our internal systems and processes. We’re looking for someone with both practical and theoretical knowledge in IT security, capable of not only enforcing policies but also continuously improving them to meet evolving security challenges.
What you’ll be doing
- Building and optimizing our Google SOC, including SIEM and SOAR implementation (Google Chronicle)
- Automation of the Security operation processes by using DevSecOps principles
- Monitoring, analyzing, and escalating security alerts from our Google Chronicle SIEM
- Developing, evolving, and enforcing security policies and incident response plans
- Driving the creation of SIEM dashboards and enhancing monitoring and alerting capabilities
- Managing and mitigating CVE vulnerabilities on our platforms and base images
- Assisting with the implementation of security measures for both external and internal systems
- Implementing and automating static code scanning processes to identify and remediate vulnerabilities early in the development lifecycle
- Leading efforts in automated security scanning for continuous monitoring of code and infrastructure security
- Participating in the on-call security response rotation to handle critical security incidents
- Office hours: 9:00 AM 🡪 12:00 PM, 1:00 PM 🡪 06:00 PM, off on Saturday and Sunday. Annual holidays leave will be following Vietnam law and as company regulations.
- 25 days of annual leave
- Flexible working hours
- Competitive remuneration package
- 13th salary
- Social insurance, health insurance, and unemployment insurance will be under Labor Law.
- Generous private medical health insurance for employees & family members
- Dynamic, young & international environment
- Team building activities & outing
- Brand new & state-of-art Agile office
- Opportunity for traveling & training in Europe
As a member of the Aurify team, you'll have the unique opportunity to work on projects that integrate state-of-the-art technologies with a customer-centric approach. You'll be at the forefront of implementing practices that ensure cost management and security compliance, all within a framework that values simplicity and smart solutions, echoing the mission of Unifiedpost. Join us in our journey to navigate the complexities of the cloud landscape together, providing peace of mind and empowering businesses to focus on their core activities with the assurance of performance, high availability and security excellence.
Yêu cầu công việc
Requirements
- Hands-on experience with SIEM (preferably Google Chronicle) and SOAR solutions
- Strong knowledge of CVE management and experience with vulnerability mitigation
- Solid understanding of cloud security (GCP and/or AWS)
- Knowledge of container security (Docker, Anchore)
- Practical experience in developing and implementing security policies and incident response plans
- Strong command of English (both written and spoken)
- Ability to collaborate effectively with cross-functional teams
- Experience with Linux systems (RedHat/CentOS) and using Jira for project management
Nice To Have
- Experience with OSSECC, Wazuh, Tenable.io, Burpsuite, Cloudsuite
- Familiarity with Ansible, Opsgenie, and Prometheus
- Experience with patch management solutions such as Katello/Satellite
- Experience in automation with Python
- A keen focus on real-world security issues and the ability to differentiate between buzz and practical security
Soft skills
- Excellent communication-skills to work constructive and in cooperation with internal and external teams
- Be assertive, knowledgeable and trustworthy
- High degree of responsibility and autonomy
Ngôn ngữ
-
English
Nói: Intermediate - Đọc: Intermediate - Viết: Intermediate
Yêu cầu kỹ thuật
- DevSecOps
- SIEM
- SOAR
- Linux
- CentOS
- Jira
- Python
- Redhat
- Docker
- Ansible
- AWS
- Opsgenie
- Burp Suite
- GCP
- Prometheus
- CVE
- Katello
- Satellite
- Tenable.io
- Wazuh
- Anchore
NĂNG LỰC
- Project Management
- Communication Skills
- Reliable
Thông tin doanh nghiệp
Aurify is a proud member of the Unifiedpost Group.
We are on a mission to redefine the digital landscape for businesses worldwide. Leveraging the pioneering spirit and innovative foundation of Unifiedpost, we extend our expertise into the realms of cloud infrastructure management, security operations, and DevOps solutions. Unifiedpost, our mother company, has been a beacon of simplification and smart solutions in administrative and financial processes since 2001. With a robust cloud-based platform that integrates Documents, Identity, Payments, and associated finance services, Unifiedpost has made significant strides in making business services simple and smart for SMEs and Corporates alike.
Being part of Aurify means you're contributing to a vision that spans across 30 countries, impacting over 980,000 SMEs and more than 2,500 Corporates through the Unifiedpost platform. In 2020 alone, Unifiedpost processed more than 400 million documents, a testament to our scale and impact in the digital world. As we continue to grow and expand our services, we're looking for passionate individuals who are eager to make a difference in the fast-evolving sectors of cloud services, security, and financial technology.