Manager, Chief Specialist, Cybersecurity Incident Monitoring and Response (SIEM/CSOC) Specialist

DTEK Networks is a leading energy company in Ukraine.

The Company's employees provide light and comfort in the homes of Ukrainians every day, and enterprises with the opportunity to work and develop.

We are looking for a Manager/Chief Specialist/Specialist in the Cybersecurity Incident Monitoring and Response (SIEM/CSOC) department

We are looking for candidates to join our cybersecurity team. You will monitor, analyze and respond to cyber threats, implement solutions to improve security, and work with modern SIEM, IDS/IPS solutions.

The level of the position is negotiable and depends on your professional skills and knowledge.

Location- Kyiv

With Us You Will Receive

• Official employment, decent salary and bonus based on work results;
• Convenient work schedule;
• Paid vacation and sick leave;
• Health insurance;
• Training at the DTEK Academy (online courses, classroom trainings, master classes, closed clubs, professional communities);
• An energetic and friendly team.
  
  

We would be happy to see you in the team if you have:

• Higher engineering and technical education in the field of:
• Information technology
• IT security;
• Cybersecurity;
• Information security.
• Practical knowledge and skills in the field of cybersecurity, IT security.
• Practical experience working with cybersecurity monitoring and breach detection systems.
• Understanding the principles of network protocols (TCP/IP, DNS, HTTP, FTP, etc.).
• Knowledge of basic attack methods and how to detect them (phishing, DDoS, SQL injections, MITM, etc.).
• Experience in creating correlation rules for SIEM.
• Orientation in the requirements and controls of cybersecurity standards (ISO, NIST, CISA).
• Ability to multitask and respond quickly to potential cyber incidents or cybersecurity policy violations.
• English at a level that allows you to work with the system interface and technical documentation.
• Knowledge in the field of OT systems will be a plus (SCADA, ICS, Modbus protocols, IEC-104).
• Analytical skills,
• Sociable,
• System,
• Stress-resistant,
• Diligent,
• Responsible.
  

Your Tasks Will Be

• Real-time monitoring of cybersecurity triggers and incidents using SIEM and IDS systems.
• Analysis and classification of information security incidents.
• Detecting and responding to potential and actual cyberattacks/cyberincidents;
• Research and organization of response to potential cyber threats, formation of analytical conclusions and proposals for their prevention.
• Configuration, support and optimization of SIEM and IDS OT systems (FortiNet, Nozomi).
• Develop rules, correlation scenarios, and reports to identify threats, breaches, and cybersecurity incidents.
• Interaction with departments to eliminate vulnerabilities.
• Creation of instructions and procedures to ensure the functioning of the monitoring and incident management system;
• Threat modeling to identify vulnerabilities, threat sources, develop countermeasures, and build methods for identifying and alerting on detected threat source activity;
• Processing the requirements of state regulatory and legal acts on cybersecurity and assessing their applicability to the operational technology environment.
  
  

Your Main Tasks Will Be

Ensuring cybersecurity of OT infrastructure (operational technologies), technological systems and equipment, taking into account the requirements of current legislation and regulatory legal acts of the Ministry of Energy, the Cabinet of Ministers of Ukraine and the State Security Service of Ukraine in the field of cybersecurity of critical infrastructure in the energy sector, as well as the best industry standards and practices of NIST, ISO, CISA.

You Will Also Actively Participate In

• In the deployment of the OT segment cybersecurity and cybersecurity event management center;
• Creating, testing, and improving rules for detecting cyberattacks, anomalous events, and destructive actions and responding to them.
  
  

You will have a unique opportunity to develop your skills and knowledge in the field of cybersecurity, increase your level of communication, responsibility and organization. And most importantly, you will become part of a team that ensures the sustainability of the energy front!

We Are Waiting For Your Resumes With Salary Requirements.

By submitting your resume for a vacancy, you agree to the use of your personal data by DTEK within the framework of the current legislation of Ukraine. DTEK guarantees the confidentiality of applications and the negotiation process when selecting candidates for a vacancy.

Please note that feedback on the results of the vacancy review will be provided within two weeks in the event of a positive decision regarding your candidacy.

Our energy brings light and comfort to people!