SOC & IR Specialist

Summary

Data has never been more valuable and vulnerable. As cybercriminals become more sophisticated and regulations more strict, organizations struggle to answer one key question: “Is my data safe? "

At Varonis, we see the world of cybersecurity differently. Instead of chasing threats, we believe the most practical approach is protecting data from the inside out. We’ve built the industry’s first fully autonomous Data Security Platform to help our customers dramatically reduce risk with minimal human effort.

At Varonis, we move fast. We’re an ultra-collaborative company with brilliant people who care deeply about the details. Together, we’re solving interesting and complex puzzles to keep the world’s data safe.

We work in a flexible, hybrid model, so you can choose the home-office balance that works best for you.

Overview:

We are seeking a highly skilled and experienced Security Operations Center (SOC) & Incident Response (IR) Specialist to join our security team. This role requires a deep understanding of cybersecurity threats, incident response, forensic, and advanced threat hunting techniques. The ideal candidate will possess a strong technical background, excellent problem-solving skills, and a passion for protecting our organization's critical assets.

Responsibilities:

• Lead complex incident response efforts and perform deep investigations across logs, network traffic, and other data sources.
• Develop and implement effective incident response plans and playbooks.
• Threat Hunting: Proactively identify and investigate advanced threats and vulnerabilities.
• Develop and implement threat hunting strategies to stay ahead of emerging threats.
• Oversee SOC operations by monitoring, analyzing, and responding to security events while ensuring effective use of security tools and continuously improving operational processes.
• Ensure effective utilization of security tools and technologies.
• Work at a high technical level and be capable of identifying threats, and threat vectors that cause security events.
• Design, develop, and maintain security automations and SOAR workflows to streamline SOC operations, reduce manual effort, and significantly accelerate incident detection, investigation, and response.
• Initiate and lead continuous improvement initiatives aimed at optimizing operational workflows, enhancing detection and response capabilities, and expanding overall security coverage across the environment.
• Research emerging threats and develop new detection use cases to enhance threat identification and prevention capabilities
  
  

• Deep understanding of network security, endpoint security, cloud security, and security operations.
• 3+ years’ experience working within a security operation/Security architecture teams.
• 2+ years’ experience working with SOAR platforms for security automation.
• Hands-on experience in researching emerging threats and vulnerabilities, and developing new detection use cases to identify and block attacks.
• Demonstrated knowledge and experience with MITRE ATT&CK Framework
• Proficiency in using security tools and technologies, such as SIEM, EDR, SOAR, EASM, CSPM and threat intelligence platforms.
• Proficient in Azure and AWS Cloud platforms
• Ability to analyze complex security problems and develop effective solutions.
• Strong analytical thinking, effective leadership, and clear communication of complex technical concepts to any audience.