Tóm lược
Mô tả công việc
Tóm tắt công việc
Are you passionate about cybersecurity and ready to take a hands-on role in advanced security operations? As a Senior Security Operations Engineer, you’ll play a pivotal role in operating and refining our Security Operations Center (SOC), with a specific focus on incident response, threat hunting, and penetration testing.
You will be part of our Security Operations team, responsible for monitoring, analyzing, and responding to security incidents across our infrastructure. This role goes beyond production security—it encompasses securing our internal systems and processes through continuous operations, incident handling, and proactive security assessments. We’re looking for someone with both practical and theoretical knowledge in IT security, capable of not only enforcing policies but also continuously improving our security posture through incident analysis and pentesting feedback to meet evolving security challenges.
What you’ll be doing
- Monitor, analyze, and escalate security alerts utilizing our SIEM solutions (Wazuh & Chronicle).
- Conduct penetration tests and vulnerability scans against our internal platforms.
- Drive the creation of effective SIEM dashboards and improve overall monitoring and alerting capabilities.
- Manage and mitigate CVEs (Common Vulnerabilities and Exposures) on our virtualized platforms and container base images.
- Assist in implementing security measures for both internal and external systems.
- Utilize static code scanning processes to identify and remediate vulnerabilities early in the development lifecycle.
- Enforce and evolve the configuration of our Security Command Center.
- Collaborate on automated security scanning initiatives for continuous monitoring of code and infrastructure security.
- Participate in the on-call security response rotation to address critical security incidents.
- Perform recurring reviews and contribute to the optimization of the review process.
- Assist with preparation and participation in security compliance audits.
- Help mentor junior team members.
- Flexible working hours, off on Saturday and Sunday. Annual holidays leave will be following Vietnam law and as company regulations.
- 25 days of annual leave
- Competitive remuneration package
- 13th salary
- Social insurance, health insurance, and unemployment insurance will be under Labor Law.
- Generous private medical health insurance for employees & family members
- Dynamic, young & international environment
- Team building activities & outing
- Brand new & state-of-art Agile office
- Opportunity for traveling & training in Europe
As a member of the Aurify team, you'll have the unique opportunity to work on projects that integrate state-of-the-art technologies with a customer-centric approach. You'll be at the forefront of implementing practices that ensure cost management and security compliance, all within a framework that values simplicity and smart solutions, echoing the mission of Unifiedpost. Join us in our journey to navigate the complexities of the cloud landscape together, providing peace of mind and empowering businesses to focus on their core activities with the assurance of performance, high availability and security excellence.
Yêu cầu công việc
Requirements
- Hands-on experience with SIEM solutions.
- Strong knowledge of CVE vulnerability mitigation on VM’s
- Solid understanding of cloud security (GCP and/or AWS)
- Strong command of English (both written and spoken)
- Ability to collaborate effectively with cross-functional teams
- Experience with Linux systems (RedHat/CentOS)
- Know how to use Jira for project management
- Knowledge of container security (Docker)
- Experience in Pentesting
- Fluent in at least one scripting language (Appscript, Python, Bash)
Nice To Have
- Experience with OSSEC, Wazuh, Tenable.io, Burpsuite, Google Secops or SCCE
- Familiarity with Opsgenie or Prometheus
- Experience with patch management solutions such as Satellite
- DevSecOps knowledge
- A keen focus on real-world security issues and the ability to differentiate between buzz and practical security
- Experience in payment compliances and EU regulations is a plus
Soft skills
- Excellent communication-skills to work constructive and in cooperation with internal and external teams
- Be assertive, knowledgeable and trustworthy
- High degree of responsibility and autonomy
Ngôn ngữ
-
English
Nói: Intermediate - Đọc: Intermediate - Viết: Intermediate
Yêu cầu kỹ thuật
- Linux
- Docker
- SIEM
- CentOS
- Jira
- Python
- Redhat
- OSSEC
- AWS
- Bash
- Opsgenie
- Burp Suite
- GCP
- Prometheus
- SecOps
- DevSecOps
- SOAR
- Satellite
- Tenable.io
- Wazuh
NĂNG LỰC
- Project Management
- Communication Skills
- Reliable
Thông tin doanh nghiệp
Aurify is a proud member of the Unifiedpost Group.
We are on a mission to redefine the digital landscape for businesses worldwide. Leveraging the pioneering spirit and innovative foundation of Unifiedpost, we extend our expertise into the realms of cloud infrastructure management, security operations, and DevOps solutions. Unifiedpost, our mother company, has been a beacon of simplification and smart solutions in administrative and financial processes since 2001. With a robust cloud-based platform that integrates Documents, Identity, Payments, and associated finance services, Unifiedpost has made significant strides in making business services simple and smart for SMEs and Corporates alike.
Being part of Aurify means you're contributing to a vision that spans across 30 countries, impacting over 980,000 SMEs and more than 2,500 Corporates through the Unifiedpost platform. In 2020 alone, Unifiedpost processed more than 400 million documents, a testament to our scale and impact in the digital world. As we continue to grow and expand our services, we're looking for passionate individuals who are eager to make a difference in the fast-evolving sectors of cloud services, security, and financial technology.