What are the responsibilities and job description for the Security Operations Engineer position at MentorMate?
MentorMate creates durable technical solutions that deliver digital transformation at scale by blending strategic insights and thoughtful design with brilliant engineering. With mature and established practices in enterprise web and mobile development, quality engineering, technical architecture, human-centered design, cloud, DevOps, data, and analytics, the company provides challenging careers in a friendly and global people-oriented environment. We value every team member and share our success through flexible working models, competitive pay and benefits, and advancement opportunities.
As part of global technology company Tietoevry Create, MentorMate enables people to work on impactful, global projects for recognizable brands and grow their careers in a team of over 10,000 experts.
Together with our sister company Infopulse, also part of Tietoevry Create, we are expanding our team in Bulgaria and will be looking for experts in the telecom industry. This collaboration aims to leverage our combined expertise to deliver exceptional digital transformation solutions in the telecommunications sector.
About the role
We are looking to hire a Security Operations Engineer who will be responsible for monitoring and analyzing security incidents, implementing robust security measures, and responding to potential threats. Additionally, you will collaborate with cross-functional teams to develop and maintain security policies, procedures, and standards. You will have the opportunity to expand your professional skills by collaborating with a leading global telecommunication enabler.
\n- Manage security incidents and vulnerabilities using our SOC ticketing system
- Focus on corporate security awareness and training programs of different nature
- Ensure accurate problem description and severity determination for reported issues
- Actively follow up on incident tickets for status updates and remediation
- Prepare monthly reports for Senior Management on notable security events
- Log and follow-up policy and risk exception and exemptions through their lifecycle
- Manage security certificates and ensure timely renewal
- Log and track temporary access or privileges
- Coordinate pentest activities, including calendar management and secure storage of reports
- Initiate, follow up and register evidence of Quarterly User Access reviews
- Participate in vulnerability scanning, analysis, and remediation actions
- Initiate and coordinate Risk Assessments
- Analyze and maintain meaningful KPIs and dashboards using big data
- Scan for compliance against policies and standards, logging deviations and striving for remediation
- Develop and fine-tune security processes and procedures
- Apply automation where needed
- Act as a first-line contact point for various security consultations
- Opportunity to work on projects such as Security Information and Event Management (SIEM) deployment and operations, integration with security incident sources, setting up Vulnerability Management and Endpoint protection systems, conducting threat hunting activities, identifying and remediating security vulnerabilities and weaknesses
- 3 years of professional experience in IT and Network Security products and services
- Experience in administering and hardening Unix/Linux and/or Microsoft operating systems
- Proficient in IT and Information Security principles, techniques, and technologies
- Practical understanding of various security systems available in the market, including firewalls, SSL/IPSec VPN, Proxy, Remote Access, PKI, etc.
- Sound knowledge of Networking protocols and technologies, such as TCP/IP, Firewalls, NGFW, Routers, etc.
- Familiarity with application security and general information security concepts, including XSS, buffer overflow, URL tampering, SQL Injection, DDoS, Botnets, etc.
- Basic programming and/or scripting skills, with a focus on automation
- Exceptional written, presentation, and verbal communication abilities
- Collaborative team player who embraces flexibility and adapts to changes
- Strong analytical and problem-solving skills
- Self-disciplined, persuasive, and proactive in taking initiative and implementing improvements
- Strong proficiency in both written and spoken English
- Programming and scripting skills (Python, Bash, Powershell, Perl)
- Experienced in using collaboration tools and ticketing systems like RT and Jira
- Familiarity with telco technologies and protocols
- Experience with Endpoint Detection and Response Solutions
- Experience with Vulnerability scanners like Nessus, MVM, Qualys, etc.
- Good knowledge of IDS/IPS solutions (Security Onion, Snort, Cisco IPS, NGIPS)
- IT Security Certifications like CISSP, CISM, CISA, CEH, GCIH, GCIA, OSCP, etc.
- Experienced in working with SIEM and/or SOAR solutions
- Professional Growth: Clear career path, vertical and horizontal advancement opportunities
- Regular Salary Raises: Following the curve of your career path and performance
- Work Where You Want: Choose to work remotely, in-office, or a combination of the two
- Upskilling: Various trainings, knowledge sharing events, personal learning budget
- Incentive Programs: Rewards for referring employees, sharing knowledge, and more
- Additional Insurance: Attractive health and dental insurance packages
- Extra Days Off: The longer you work with us, the more paid leave you get
- Transport & Leisure: Partial coverage of transport costs, sports passes, takeaway food
- Save for the Future: Set a retirement plan or start an investment program
- Teambuilding: Enjoy team gatherings and communities of interest
- Giving to Others: Take part in various charity and volunteer activities
- Mental Wellness: Support with a counseling package if needed
MentorMate is a place of constant energy and personality. On the clock, we’re technology experts and leaders that bring passion and knowledge to every project. Off the clock, we’re an eclectic bunch of foodies, music buffs, artists, sports fanatics, karaoke pros, and outdoor enthusiasts.
Global leaders in digital consulting, design, and engineering services, MentorMate and Tietoevry Create are equal-opportunity employers. All applicants will be considered for employment without attention to race, color, religion, sex, sexual orientation, gender identity, national origin, veteran, or disability status.