SIEM Engineer |SOC|

Grafton Recruitment byl založen v roce 1982 a patří k předním dodavatelům personálního poradenství. Je jednou z největších nezávislých evropských firem, která vyhledává zaměstnance napříč všemi sektory a pracovními pozicemi. V ČR nás můžete navštívit na 14 pobočkách. Více na www.grafton.cz

Turn raw logs into an automated defense powerhouse. We are looking for an engineer who lives for detection, analysis, and automated response. This position requires candidates to have full work eligibility and immediate access to the local labor market. Join us to build the systems that catch threats before they manifest.

Your Key Responsibilities

SIEM/SOAR Mastery: Develop detection use cases and implement SOAR playbooks for automated response.

Proactive Monitoring: Analyze security events across infrastructure and cloud environments.

Incident Response: Investigate incidents, coordinate remediation, and handle escalations.

Data Engineering: Integrate logging agents and optimize data normalization (Syslog, WinEvent).

Vulnerability Hunting: Manage scanning tools (Nessus, Qualys) and track remediation.

NABÍZÍME

Benefits & Perks

Financial Rewards: Performance-based bonuses and premiums.

Work-Life Balance: 5 weeks of paid vacation and flexible working hours. ️

Remote Work: IT positions are 100% remote (fully work-from-home).

Travel Opportunities: Occasional business travel within the EU (not on a regular basis). ️

Meal Contribution: Meal allowance (flat-rate meal voucher).

Retirement Planning: Contribution to pension/life insurance (CZK 1,000/month after the probation period).

Mobile Plan: Discounted corporate mobile tariff.

On-site Amenities: Access to the company canteen (when visiting the office).

Discounts: Exclusive employee discounts on company products and services. ️

Leisure & Wellness: Flexible benefits system via Cafeteria (Benefit Plus) for sports, culture, and health. ‍️

POŽADUJEME

️ What We Expect

3–5 years of experience in SOC, monitoring, or incident response.

Technical Skills: Proficiency in Microsoft Sentinel, Splunk, or Elastic.

Coding: Ability to work with KQL, Python, and Regex.

Frameworks: Strong knowledge of MITRE ATT&CK and IR processes.

Eligibility: Candidates must be legally authorized to work in the region at the time of application.

Languages: Fluent English (essential for global team coordination).

DALŠÍ POŽADAVKY

• angličtina (C1 - aktivně)

Send us your CV in English and Czech if you have one. For more related job opportunities visit https://www.grafton.cz/en/job-search