Menu
Security | Incident Response Analyst
Apply for position
security-team-icon

Incident Response Analyst

hot vacancy
June 11, 2025
Full time
WorldWide

Overview

SOFTSWISS continues to expand the team and is looking for an Incident Response Analyst. We need a true, experienced, and accomplished professional who shares our culture and values.

Purpose of the Role

You’ll help protect our iGaming services, working closely with IT and product teams to ensure security and stability across our ecosystem.

Key Responsibilities

  • Upgrade SOC processes & response automation.
  • Respond to cybersecurity incidents.
  • Immerse yourself in the specifics of systems and processes to achieve a balance of security and performance.
  • Investigate security incidents and instigate remedial measures to address breaches.
  • This position follows a 2-on-2-off rotating schedule:
    • 12-hour day shift.
    • Followed by a 12-hour night shift the next day.
    • Then 2 days off.

Our stack

  • Splunk, Clickhouse, Gitlab, Python, ELK, Wazuh.

Required Experience

  • 1+ year of experience as an information security engineer or analyst.
  • Experience with SIEM, EDR, IDS/IPS, IRP/SOAR events analysis.
  • Familiarity with SecOps processes (monitoring, triaging, investigating, threat intelligence).
  • Strong investigative and analytical problem-solving skills.
  • Intermediate or higher proficiency in English and Russian.

Nice to Have

  • Expertise in network, host, and cloud-based analysis and investigation.
  • Experience with AWS, Azure, GCP, Kubernetes, Docker infrastructure and related attack vectors.
  • Strong understanding of attack pipelines (MITRE ATT&CK Framework, Cyber Kill-Chain).
  • Experience with Clickhouse, Splunk, Kafka, ELK, Graylog, etc.
  • Strong Linux system administration experience.
  • Familiarity with CI/CD, software development lifecycle, Infrastructure-as-Code (Terraform/Ansible/etc).
  • Proficiency in automation (Bash/PowerShell, Python).
  • Experience with log collection, delivery, and normalisation.
  • Strong knowledge in open-source endpoint & infrastructure security tools (Audit.d, Sysmon, AppArmor, SELinux, etc.).
  • Basic static and dynamic malware analysis.
  • Offensive experience (penetration testing, red teaming)
Learn more about our hiring process here – what to expect, how to prepare, and what makes SOFTSWISS different.

    Apply for position

    Requirements: PDF, DOC, up to 5Mb
    Not quite the right role? View similar vacancies:
    HOT
    security-team-icon
    WorldWide
    Security
    Security Awareness Specialist
    April 11, 2025
    Full time
    View details
    View details
    HOT
    security-team-icon
    WorldWide
    Security
    Incident Response Lead
    April 15, 2025
    Full time
    View details
    View details
    HOT
    security-team-icon
    Locations
    • Georgia
    • Poland
    • Serbia
    Security
    Senior Security Database Engineer
    February 19, 2025
    Full time
    View details
    View details