Security Monitoring Operator (Cybersecurity)

TL;DR

Security Monitoring Operator (Cybersecurity): Monitoring client environments in a 24/7 MDR center using EDR, XDR, SIEM, and SOAR with an accent on threat detection, incident investigation, and mitigation. Focus on analyzing security incidents, threat hunting, rule creation, and contributing to incident response playbooks.

Location: Bratislava (Hybrid)

Salary: from 1700 EUR (brutto, monthly)

Company

Global cybersecurity leader providing threat detection and managed services.

What you will do

• Operate in 24/7 MDR center, monitoring with EDR, XDR, SIEM, SOAR under expert guidance.
• Investigate incidents, document adversary activity, and escalate as needed.
• Analyze client data for risks and vulnerabilities.
• Participate in threat hunting, intelligence gathering, and proactive measures.
• Create and maintain EDR, XDR, SIEM rules and refine MDR toolset.
• Develop incident response guidelines, prepare client reports, and communicate effectively.

Requirements

• Upper intermediate English (B2).
• Willingness to work 24/7 shifts.
• Fundamental knowledge of Windows/Linux systems and computer networks.
• IT security background preferred.
• Basic scripting (PowerShell, Python, Bash, etc.) advantageous.
• Analytical mindset, attention to detail, strong communication, self-motivation.

Nice to have

• Cybersecurity certifications (GIAC, CompTIA, etc.).
• SOC experience or familiarity with SIEM/SOAR (Splunk, QRadar, etc.).
• Forensics or incident response knowledge.
• CTF participation.

Culture & Benefits

• Health: BenefitPlus, healthcare check-ups, Multisport card, supplementary pension, sick days.
• Family: Marriage/childbirth allowances, parental contributions, family events.
• Office: Refreshments, breakfasts, activity/quiet rooms, events, teambuildings.
• Other: Performance bonuses (up to 10% twice yearly), loyalty perks, refer-a-friend, discounts.