Overview:
SOFTSWISS continues to expand the team and is looking for a Senior Cybersecurity Engineer. We need a true, experienced, and accomplished professional who shares our culture and values.
Key responsibilities:
- Manage and develop the existing SIEM infrastructure
- Act as the owner and L3 support for instruments and technologies used by data analysts
- Serve as an L3 SOC specialist for database-related incidents and similar security events
- Immerse yourself in system and process specifics to achieve a balance of security and performance
- Automate team tasks using Python, Go, or Bash development
- Participate in securing CI/CD and Kubernetes infrastructure
- Contribute to defining security policies and standards
Requirements:
- More than 3 years of experience as a Clickhouse database administrator or equivalent knowledge
- More than 2 years of experience as a data engineer, with data collection, normalizing, and storage optimization, especially with SIEM data
- Experienced or interested in DevOps and cybersecurity skills improvement
- Strong experience in database technologies: clustering, sharding, access roles, views, indexing, etc
- Experienced with monitoring tools (VM, Prometheus, Zabbix, Grafana, AlertMgr, etc.)
- Strong Linux system administration experience
- Experience with Salt Stack, Terraform, Kubernetes, and similar technologies
- Experience in public cloud technologies, including Oracle Cloud, AWS, and Microsoft Azure
- Strong investigative and analytical problem-solving skills
- Practice in building security processes in a corporate environment
- Experience in development and automation (Python/Bash/Go)
- Experience in implementing CI/CD and automation (GitLab/Jenkins)
- Familiarity with SecOps processes, including detection, monitoring, alerting, and threat intelligence
- Structured written and oral communication to ensure clarity
- Russian B2 Level
- Intermediate or higher English level
Nice to have:
- Experience in SIEM administration, configuration, and event analytics
- Ability to maintain accountability in responsibility zones, leveraging data analyst instruments to optimize processes, ensure accuracy, and drive effective results
- Experience with VMware NSX, Neutron, Docker, Kubernetes, Istio, and similar technologies
- Experience in automation using Bash, Python, PowerShell, and/or DevOps tools like Terraform/Salt
- Knowledge of how automatic Role-Based Access Control (RBAC) should work in a company
- Strong knowledge of endpoint and infrastructure security, such as Audit.d, Sysmon, AppArmor, SELinux, etc
- Hands-on experience implementing security controls and improvements in one or more of the major cloud providers (AWS, GCP, Azure)