SOC Security Specialist

Work smart, have fun and make an impact

Our purpose is to guide all companies toward a sustainable world. EcoVadis is the leading provider of business sustainability ratings.Our solutions are backed by an international team of experts and powerful technology. We analyze data and build sustainability scorecards that give companies actionable insights into their environmental, social and ethical risks.

Why apply to EcoVadis?

Be a part of the global sustainability change in business. Grow your career. Work with extraordinary people. Feel valued for your contribution.

Our IT Security team is looking for a SOC Security Specialist to assist and support within a fast-growing company. You will be responsible for the correct alignment of our security needs within the security operations services, ensuring the harmonization with business strategic goals.

As the SOC Security Specialist, you will become the main point of contact and technical coordinator for Technical Crisis Response, helping with the definition and maintenance of our plans and procedures. Also, your knowledge and willingness to learn on new security trends and technologies will be of great value to our company, while identifying efficiency and automation opportunities.

This role, reporting directly to the IT Security Director, will include the following responsibilities:

• Plan, direct and control the Security Operations Center (SOC) global functions and operations;
• Ensure 24x7 monitoring, detection and analysis of incidents to protect EcoVadis, supervising that all security incidents are addressed, ensuring timely escalation, and tracking adequate remediation;
• Manage cyber-intelligence capabilities to identify and proactively protect the company against potential threats, brand abuses and risks;
• Understand SOC providers' services, while ensuring proper prioritization, alignment and coordination with internal stakeholders;
• Responsible for security event monitoring, detecting, alerting and responding, as well as becoming the primary Security Incident Response Coordinator;
• Ensure there are adequate monitoring and detection mechanisms, challenge our providers' security guidance, and test and update the quality of these protective measures on a regular basis;
• Revise and develop documentation and processes to strengthen the SOC function, to facilitate the integration with other business units;
• Create and maintain policies, standards and a service catalog pertaining to our SOC services, either autonomously or collaborating with the Network and Security Operations team;
• Establish security guidelines and improvements for our security operations, in collaboration with network operations (ZTNA, SWG, DLP,...);
• Become the primary point of contact for security needs within SASE operations;
• Conduct regular checks within our infrastructure to identify missing gaps in our detection capacity, and provide recommendations for improvement (e.g. Threat Hunting);
• Control the use of resources and execute corrective actions where applicable;
• Ensure daily management, administration & maintenance of security devices to achieve operational effectiveness;
• Create reports, dashboards and metrics for SOC services, with multiple target audiences (technical and non-technical) and presentations when needed;
• Maintain our Incident and Crisis Response Plans, create and update playbooks and procedures, and conduct tabletop simulations with stakeholders;
• Ensuring threat management, threat modeling, identify threat vectors and develop use cases for security monitoring, in coordination with all SOC services;
• Be a leader in the expansion, innovation and growth of the SOC;
• Advocate for continuous improvement and automation wherever possible;
• Assist with other organization security projects and tasks as required.

• 3+ years of experience in a similar role, with emphasis on security operations, incident management, intrusion analysis;
• Minimum Bachelor of Science degree in Computer Science, Computer Engineering, or a related technical field;
• Professional certifications (e.g. SANS GIAC / GCIH, Azure SC-200);
• Hands-on experience in SOC definition and strategy;
• Advanced knowledge of:
  • Security Incident and Event Monitoring (SIEM);
  • Behavior analysis (UEBA);
  • EndPoint security (EDR);
  • Network security (NDR);
  • Threat Intelligence (CTI);
  • Threat Hunting (TH);
  • Security Service Edge (SSE);
  • Web Content Filtering (SWG);
  • Identity protection (IAM / PAM);
• In-depth familiarity with security policies, industry standards and best practices;
• Thorough knowledge of Microsoft Azure security solutions (e.g. Sentinel);
• Experience in designing and building security operations centers from scratch, and/or expanding their services;
• Incident management process development and incident management and coordination experience;
• Experience with SOC automation development and cloud operations' monitoring;
• Ability to lead and communicate efficiently within a team environment;
• Ability to conduct research about areas unknown to him/her, and use that knowledge to deliver security guidelines and propose improvements;
• Open to work in an international, multilingual environment;
• Proficient in English (oral and written);
• Hands-on experience with Google Workspace is a plus.

Location: Warsaw/ remote from Poland
Start date: ASAP
Contract of Employment or B2B

Everyone at EcoVadis contributes to a culture of trust, respect and empowerment. Our growing team in Poland is full of talented professionals from various sectors who all share a desire to make an impact. We offer competitive salaries and support personal growth from day one with extensive onboarding, mentoring and a brand new e-learning platform bursting with courses and modules so you can learn new skills and fine-tune old ones.

Benefits:

• Support with all the necessary office and IT equipment
• Optional (fully covered or co-financed) health care and life insurance
• Multisport card and wellness allowance
• Multicafeteria Lunch card
• Annual performance bonus
• Hybrid/ full remote work
• Remote work from abroad policy
• Internet and Electricity bill allowance
• CSR activities
• Modern, pet-friendly office in the city center (next to Rondo ONZ)
• Community service day when volunteering

Our hiring team looks forward to reviewing your CV, in English, with a guaranteed response to every application. A new job with purpose awaits you

Don't fit all the criteria but still think you'd be a good candidate?Please apply anyway to give our hiring team the opportunity to assess your skills and to learn more about what you could bring to EcoVadis. We're interested in hiring capable people, regardless of professional and educational background.

Can the hiring process be adjusted to suit my needs?Yes. We want everyone going through the hiring process with EcoVadis to feel confident that you are able to demonstrate your full potential. We welcome applications from disabled people, people with long-term health conditions, and neurodiverse candidates. If you need any adjustments, including the provision of interview questions, please let the hiring team know.

Our team's strength comes from everyone's uniqueness and is founded upon mutual respect.EcoVadis commits to equity, inclusion and reducing bias in our hiring processes. EcoVadis does not accept any form of discrimination based on color, national or ethnic origin, ancestry, citizenship, religion, beliefs, age, sex, gender identity, sexual orientation, neurodiversity, disability, parental status, or any other protected characteristic that makes you unique. In your application, we encourage you to remove personal information such as: photographs, marital status, number of children, religion, gender, residential postal code, university graduation date, past medical or parental leave(s) taken, nationality (instead, please state if you are legally eligible to work in the job region/country), university name (instead, please state any degrees obtained and the study major).