You will be responsible to make sure our network detection & response solution, ExeonTrace, stays up-to-date with the most recent security developments and provides a strong value to our customers.
You will research and define relevant security use cases and implement them in ExeonTrace in collaboration with our development team.
You will understand the daily security challenges our customers are facing with regards to network detection and translate them into features for ExeonTrace.
You will write use cases, threat reports or analysis of recent attacks for internal and external stakeholders. And you will support the marketing team to make the content accessible for a broad customer base.
Requirements:
An enthusiastic professional who likes to think independently while contributing to a team.
You enjoy educating people on cyber security.
A professional who has at least a Master’s degree in Computer Science/Electrical Engineering or similar with a specialization in digital forensics, IT security (networking and application security) or TCP/IP networking (HTTP/S, DNS, NetFlow, IPFIX, ...).
3+ years of practical experience as a member of a Security Operations Center (SOC).
Skilled in triaging alerts, threat hunting and digital forensics using various network- and host-based log data sources, including:
NetFlow/IPFIX data
Proxy/secure web gateway logs
A/D logs
Linux and Windows systems logs
Experience with Zeek/Bro is a plus
Experience with Elasticsearch, Splunk or similar SIEMs.
Java/Scala/Python programming skills and experience with Docker and Unix system administration is a big plus.