Are you looking for a new opportunity to take your career to a higher orbit? To join an international group with a successful track record in Space Engineering? A job adapted to your career ambitions and in which you could have an impact for the years to come?
For one of our clients, a major Italian Institution of the Space Sector, we are deploying a Service Delivery Team for a brand-new Security Operations Centre.
The SOC activities not only involve the monitoring of their IT infrastructure but will go beyond. In this exciting context, we are looking for several SOC Analysts, covering levels of Tier 1, 2 and 3, to be based in the beautiful city of Matera, Italia.
This position is open to anyone qualified, including applicants in the protected categories under Italian Law 68/99 (“Rules for the right to work of disabled people”).
Questa posizione e’ aperta alle categorie protette L. 68/99.
Tasks and activities
For the SOC Analysts – Tier 1:
- Monitoring and analysis: constantly monitoring security alerts and events, analysing for potential threats and escalating as necessary.
- Incident triage: performing initial triage of security incidents, classifying and prioritizing based on severity.
- Ticket handling: Creating and managing tickets for detected incidents, ensuring accurate documentation and timely resolution.
- Documentation: Maintaining detailed records of incidents, actions taken and resolutions in the incident tracking system.
For the SOC Analysts – Tier 2:
- Incident investigation: conducting in-depth investigations into security incidents escalated from Tier 1, including analysis of logs, network traffic and endpoint data.
- Advanced threat detection: utilizing advanced security tools and techniques to identify and respond to sophisticated cyber threats.
- Incident response: taking a lead role in incident response activities, coordinating with Tier 1 analysts and supporting them in more complex and advanced incidents.
- Documentation and reporting: documenting detailed incident reports, including the root cause analysis and providing comprehensive reports to stakeholders.
For the SOC Analysts – Tier 3:
- Incident response: leading and orchestrating the response to complex and advanced security incidents, guiding Tier 1 and Tier 2 operators in resolution efforts.
- Threat hunting: proactively searching for signs of advanced persistent threats within the environment, utilizing advanced techniques and tools.
- Malware analysis: analysing and dissecting malware to understand its functionality, origins and potential impact.
- Collaboration with external entities: engaging with external cybersecurity entities, law enforcement and industry partners for intelligence sharing and collaboration.
Skills and experience
The following skills and experience are mandatory:
- University Degree (Bach. or above) in Computer Sciences, IT, Information Security, Engineering or relevant technical domain.
- Proven experience as SOC operator or SOC analyst (seniority will define the level: Tier 1, 2 or 3).
- Knowledge of defence, network analysis tools, endpoint security or commercially used Tools for Incident Response and Threat Analysis.
- Proficient in gathering and analysing threat intelligence to enhance proactive threat hunting.
- Capability to perform analysis of malware and anomalous activities within the network.
- Capacity of conducting detailed root cause analysis to identify the source and impact of security incidents.
- Familiarity with cybersecurity frameworks such as MITRE ATT&CK for effective threat analysis.
- Proficiency in utilizing advanced security tools, SIEM tools, and other cybersecurity technologies.
- Desire to work both autonomously and as part of a team, in an international multicultural environment.
- Solution oriented mindset, with a customer focused communication skill.
- Eligible to undergo an Italian national Secret security clearance procedure.
- Fluent in Italian, both written and spoken. English is a strong asset.
The following skills and experience would be highly desirable:
- Relevant certifications such as Certified Information Systems Security Professional (CISSP), Certified Incident Handler (GCIH), or equivalent.
Why should you apply?
- You will have the opportunity to work within leading space organisations across Europe.
- We encourage everyone to think outside the box and to push the boundaries of traditional knowledge. This role is an opportunity to join a forward-thinking company and allows for a deeper understanding of the industry.
- To be part of a company that values integrity, inspiration, care and collaboration.
- Benefits include: competitive remuneration packages; unique career opportunities, including working in other countries; access to training and development programmes; flexible relocation support.
- We welcome applications from people with disabilities, members of ethnic minorities, all genders, LGBTQ+ individuals and ex-service personnel.
How to apply
Looking to take your career to the next level or find out more details about this opportunity? Interested applicants can apply via the "Apply" button or can also submit their CV and Cover Letter to Starion’s Recruitment team at careers@stariongroup.eu no later than 5 July 2024.
Due to the nature of the activities, preference has to be given to candidates eligible to undergo an Italian national Secret security clearance procedure.
