L2 Security Analyst (Cybersecurity)
Мэтч & Сопровод
Для мэтча с этой вакансией нужен Plus
Описание вакансии
TL;DR
L2 Security Analyst (Cybersecurity): Leading investigations of high-severity incidents and performing targeted threat hunting with an accent on root cause analysis and response recommendations. Focus on escalating complex cases, mentoring L1 analysts, and improving detection workflows using AI-assisted tools.
Location: Remote, Romania
Company
is a technology company providing digital evolution and managed services for major brands across Retail, Manufacturing, Finance, and Banking.
What you will do
- Lead the investigation of high-severity, ambiguous, or fast-moving security incidents across telemetry and case evidence.
- Perform targeted hunting and hypothesis-testing to validate suspicious activity and uncover hidden threats.
- Produce clear investigation records and evidence-based response recommendations for customer approval.
- Review escalations from Level 1 analysts and provide technical guidance to move difficult cases forward.
- Provide scheduled weekly on-call escalation support according to the service process.
- Identify visibility gaps and propose automation ideas to refine detection tuning and playbooks.
Requirements
- Must be based in Romania.
- Strong hands-on experience in SOC, MDR, or incident response work.
- Practical depth in investigation across endpoint, identity, email, cloud, and network evidence.
- English: Strong written and verbal communication required.
- Responsible AI literacy, including the ability to use AI-assisted workflows and validate outputs.
- Willingness and ability to participate in weekly on-call escalation coverage.
Nice to have
- 3-5+ years of relevant experience in cybersecurity operations or MDR delivery.
- Exposure to Microsoft Sentinel, Microsoft Defender XDR, Cortex XSOAR, Elastic Security, or Vectra NDR.
- Strong KQL or equivalent query-language experience for hunting and investigation.
- Experience with Logic Apps, SOAR workflows, or operational automation.
- Microsoft SC-200, SC-100, AZ-500, or similar security certifications.
- German language proficiency.
Culture & Benefits
- Holistic wellbeing program covering physical, emotional, and social health.
- Medical benefits and gym support.
- "Work-Life Fusion" approach providing flexibility to define professional and personal dynamics.
- Inclusive and diverse work environment based on merit and skills.
- Collaborative community within a hybrid/remote environment.
Будьте осторожны: если работодатель просит войти в их систему, используя iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →