Security Operations Center Analyst

Why Work At Nebius

Nebius is leading a new era in cloud computing to serve the global AI economy. We create the tools and resources our customers need to solve real-world challenges and transform industries, without massive infrastructure costs or the need to build large in-house AI/ML teams. Our employees work at the cutting edge of AI cloud infrastructure alongside some of the most experienced and innovative leaders and engineers in the field.

Where We Work

Headquartered in Amsterdam and listed on Nasdaq, Nebius has a global footprint with R&D hubs across Europe, North America, and Israel. The team of over 500 employees includes more than 400 highly skilled engineers with deep expertise across hardware and software engineering, as well as an in-house AI R&D team.

Position Overview:

We are seeking a dedicated Security Operations Expert to join our dynamic security team. The Security Operations Expert will be responsible for monitoring, detecting, and responding to security incidents across our corporate infrastructure, SaaS platforms, data centers, and customer services. This role involves close collaboration with our MSSP partners to maintain a robust security posture as well as working with Product, R&D, IT and the different Datacentres.

Key Responsibilities:

• Lead advanced detection and response efforts across our multi-cloud infrastructure, SaaS platforms (e.g., M365), and global data centers.
• Investigate and manage complex security incidents, including host-based forensics, malware analysis, and threat hunting.
• Perform in-depth analysis of security alerts, and correlate events across heterogeneous platforms.
• Collaborate with MSSP partners and internal teams (Product, R&D, IT, Data Center Ops) to ensure a unified and scalable response to threats.
• Develop and refine incident response Processes and automated playbooks to improve Mean Time to Detect (MTTD) and Mean Time to Respond (MTTR).
• Tune and create SIEM detection rules, behavioral analytics, and custom queries to identify evolving TTPs.
• Provide strategic recommendations for security posture improvements based on threat intelligence and post-incident reviews.

Qualifications:

• Experience: Minimum of 5 years in a Security Operations Center (SOC), Cyber Incident Response, or similar high-tier security role.
• Cloud Awareness: Familiarity with cloud-native environments (e.g., AWS, Azure, GCP) and cloud security principles — prior hands-on experience is an advantage.
• Technical Skills:
• Proven experience with SIEM and SOAR platforms (e.g., Microsoft Sentinel, Splunk, Palo Alto XSIAM).
• Strong understanding of network protocols, endpoint protection, and incident classification frameworks (e.g., MITRE ATT&CK).
• Familiarity with host-based investigations, malware indicators, and system log analysis on Windows and macOS systems.
• Experience working with detection and prevention tools such as EDR, IPS, DLP, and sandboxing solutions.
• Certifications: One or more industry certifications (e.g., GIAC GCIA/GCFA/GCED, CISSP, CySA+, CEH) are preferred, but not mandatory.

• Soft Skills:
• Strong analytical and problem-solving abilities.
• Excellent communication skills, both written and verbal.
• Ability to work collaboratively in a team environment.
• Attention to detail and a proactive approach to identifying and mitigating security threats.
• Fluent in English.

What we offer

• Competitive salary and comprehensive benefits package.
• Opportunities for professional growth within Nebius.
• Hybrid working arrangements.
• A dynamic and collaborative work environment that values initiative and innovation.

We’re growing and expanding our products every day. If you’re up to the challenge and are excited about AI and ML as much as we are, join us!