Skip to content Skip to menu Skip to footer
Descrizione dell’offerta di lavoro

eSentire is looking for highly capable individuals to be part of our Security Operations Centre (SOC). eSentire is a recognized industry leader and one of Canada’s Fastest-Growing Tech company. We work in a collaborative and innovative work environment with brilliant and passionate people who strive and encourage others to do their best. Join us to gain rewarding and developing career experience with the ability to grow and make an impact on your work.

Role Overview 

As a Technical Lead, you will excel in a dynamic and demanding environment. This individual is expected to be able to effectively manage highly technical investigations and support the delivery of meaningful, accurate results for both internal and external customers in a dependable and targeted manner. Time management and in-depth knowledge of all internal and many external products and services are imperative to success. 

The successful candidate will be responsible for leading advanced investigations, handling major security incidents and driving efficiency within the SOC.

Responsibilities

  • Take ownership of in-depth investigations, digital forensics (network, endpoint, log), and customer requests, conveying results to clients by e-mail and phone as needed. 
  • Handle complex security incidents and deliver incident reports and after-action reviews. 
  • Coordinate resources during a customer incident to ensure proper handling. 
  • Serve as a dedicated technical point of contact during an incident to offer a consistent experience for customers during high-stress events. 
  • Prioritize criticality of internal and external requests based on potential impact to customer environments or satisfaction. 
  • Provide high level summaries of incidents that could be tailored for multiple non-technical audiences. 
  • Lead internal projects and initiatives to increase SOC efficiency and improve SOC tooling, working cross functionally with other internal teams as a stakeholder for the Service Delivery Organization. 
  • Review and audit various SOC investigations and processes, following up with analysts and customers, as necessary. 
  • Support and mentor analysts in advanced investigations. 
  • Delegate resources during incidents that affect a large portion of the customer base to reduce overhead and coordinate team efforts. 
  • Ability to convey customer requirements to Product and Account Management. 
  • Represent the SOC in various stages of development of products and services, ensuring internal accountability and visibility. 
  • Identify gaps in processes and procedures, defining solutions, escalating to appropriate teams, and supporting implementation to promote consistency in service delivery. 
  • Attend or lead periodic security reviews with customers as required. 
  • Apply investigative tactics, techniques, and procedures (TTPs), using your understanding of the security threats associated with the incoming signals to guide the creation of Runbooks. 
  • Deliver training modules and conduct assessments for analysts. 
  • Provide technical input on Security Advisories on behalf of the organization.

 

Requirements

  • Relevant degree in Computer Science, IT Security, IT Management, IT Support, or related discipline. Completed course must include a strong focus on networking and security. 
  • 5+ years’ full-time experience in a Security Operations Centre or similar Cyber Security Analysis role excluding time spent on an intern or work experience program. 
  • Hands on experience in at least two of the following Security domains: 
    • Network Security including Intrusion Detection Systems (IDS) 
    • Windows Endpoint Security, using EDR products such as VMware Carbon Black Response/Threat Hunter, CrowdStrike Falcon or Microsoft Defender Endpoint. 
    • SIEM/Log Management, using products such as SumoLogic, Splunk or similar 
  • Knowledge and experience of network and endpoint security technologies including: 
    • Snort and Suricata rules 
    • Packet Capture (PCAP) analysis using Wireshark. 
    • Windows Sysinternals tools 
    • Usage of Linux and navigating a terminal 
    • Basic scripting (Bash/Python/PowerShell) knowledge 
  • Be familiar with Incident Response Lifecycles (NIST/SANS) and be able to apply them to Incident Handling scenarios 
  • Analytical mind with strong attention to detail and a commitment to quality of service 
  • Strong customer facing written and verbal communication skills with the ability to effectively communicate complex security concepts with end customers. 
  • Demonstrated experience to confidently handle escalated customer issues, diffuse challenging situations and deliver an optimal customer experience. 
  • Natural ability to thrive in a fast-paced and time sensitive environment. 
  • Ability to work in an operational/shift-based environment with flexible working hours. 
  • Industry Certificates such as CompTIA Network/Security+, OSCP, CCNA CyberOps, CASP or other similar industry standard certifications.           

 

Why a Career with eSentire? 

Our Culture: At eSentire we work in a collaborative and innovative work environment. We work with brilliant and passionate people who strive and encourage others to do their best. eSentire’s idea-rich environment welcomes creative and sometimes unconventional perspectives! 

Growth Opportunities: At eSentire you will have the opportunity to grow and make an impact from your work. We encourage innovation in all who become a part of our team. With growing operations internationally, there is lots of lateral and upward advancement opportunities for rewarding and developing careers with eSentire. We’re strong believers in continuing education and provide the resources that you need to continue learning. 

Employee Perks: Every day we provide breakfast, snacks and refreshments, flexible working hours, half day off birthdays, subsidies for continuing education and health & wellness, and attractive compensation and benefits plans.  We make it our obligation to the team to stay current with compensation trends in the tech field!  

Dettagli dell’impiego
Campo d’occupazione:
Education field:
Work experience:
Work experience is required
Durata dell'esperienza lavorativa:
More than 5 years
Required skills:
cyber security
Fascia salariale:
Not provided
Date of expiry:
Link for more information:

Informazioni sull’azienda

eSentire, Inc., is a global Cybersecurity services provider with Operations Centres in Cork, Ireland and Ontario, Canada. We are the category creator and world’s largest Managed Detection and Response (MDR) company, safeguarding businesses of all sizes with the industry-defining, cloud-native Atlas platform that removes blind spots and enables 24x7 threat hunters to contain attacks and… Per saperne di più