Cyber Security Analyst
Whoohoo IT is a new brand from Whoohoo Poland: www.whoohoo-it.pl
We are building IT development teams in Poland for companies and start-ups from all over the world.
Our customer is the expert in cybersecurity business providing managed security, managed threat detection & response services to organizations around the globe. As Europe’s go-to security provider, they strive to protect freedom and build a safer digital society.
Their intelligence-driven B2B platform offers access to current and emerging threats. With a 25+ year track record in information security, 250+ researchers & analysts and sales and services support in 160 countries, they can offer global protection with local expertise and support their customers throughout the entire threat lifecycle.
Interpretation and reaction to alarms from SIEM, IDS / IPS, and EDR systems as well as other common security solutions
Evaluation of log data and analysis of malware samples including reverse engineering
Anomaly and attack pattern detection along the Cyber Kill Chain
Active stopping of malware spread, CnC communication, active exploits, infiltration, and data leaks
Supporting our customers with crisis management during a security incident and with the effective defense or containment of attacks
Technical advice with the aim of improving the security situation of your dedicated customers
Degree in computer science, with a focus on IT security or comparable training with several years of professional experience ( ≥ 2 years)
In-depth knowledge of networks (OSI Layer) and operating systems (Windows and Unix / Linux) as well as experience in analyzing Windows and Unix / Linux logs
Experience in using common IT security tools (SIEM, IDS / IPS, EDR, IDA Pro, Cuckoo, etc.) as well as manual and tool-supported attack techniques (Kali Linux, Metasploit, Mimikatz, Burp Suite, Fiddler, etc.)
Ideally, in-depth work experience in the area of Red / Blue Team, PenTest, Incident Detection / Response, or Malware Analysis
Security certifications from CompTIA (Sec + and CySA +), Offensive Security, ISC², or the SANS 400, 500, and 600 series are a plus
Quick comprehension and willingness to familiarize yourself with new topics
Solution-oriented way of working and the ability to transfer this into a programming language
Very good English skills (German nice to have)aplikuj