Our expectations:

• Completed secondary specialized or higher education;
• Understanding the principles of operation of various information security tools and understanding the incident investigation process (SIEM, EDR, WAF, etc.);
• Understanding the organization of a Windows-based domain infrastructure;
• Knowledge of network technologies (TCP/IP stack, OSI model, DNS, DHCP, NAT, types of network services);
• Ability to analyze logs of SPI events, logs of OS, DBMS, network equipment;
• Linux and Windows administration experience;
• Knowledge of writing bash scripts, Powershell, or programming skills;
• Understanding the tactics and techniques of attackers, how to detect them and counter threats; 

 

A plus would be:

• Basic knowledge and skills in using various Kali Linux tools;
• Experience using Wireshark or other traffic analysis tools;
• Practical experience working with NGFW, WAF, NTA, SIEM, ticket systems; 

 

You are expected to work:

• Analysis and assessment of the current state of the information security system in enterprise information systems;
• Monitoring, control of the functioning and operation of information security tools (SIEM, EDR, antivirus software, etc.);
• Participation in the maintenance of IT infrastructure facilities (including automated information systems, information security tools) on information security issues;
• Testing, implementation and operation of new information security systems and tools;
• Participation in conducting official investigations into violations of information security requirements (information security incidents);
• Control over the elimination of identified deficiencies and improvement of the information security system; Monitoring compliance with information security requirements;   *a workplace is planned to be created and filled (a promising vacancy)