Cybersecurity Senior Engineer

getirfinans operates within Banking as a Service model, having established partnerships with players at banking sector.What You’ll Be DoingSecuring our Private Cloud (OpenShift, VMware) by leveraging cloud security solutionsHardening and managing Linux, Windows, and macOS systemsDesigning, optimizing, and implementing WAF & IPS security policiesProtecting company data with database activity monitoring and enterprise DLP solutionsDriving Blue Team–focused security projects using NIST & MITRE ATT&CK frameworksLeading Purple Team exercises to bridge defensive and offensive capabilitiesEnhancing detection and response with SIEM & security automation projectsManaging and optimizing the SIEM solution, with a strong emphasis on Splunk, in cooperation with our MSSP partnerIntegrating log sources through methods such as syslog, regex parsing, and database log ingestionPerforming incident analysis and coordinating event response in cooperation with the MSSP to effectively mitigate threatsConducting threat hunting activities and assisting in developing threat intelligence strategies using the existing SIEM environmentCollaborating with the team to adopt a Blue Team approach, enhancing defensive measuresMentoring and guiding team members on emerging technologies, proof-of-concepts (PoCs), and internal projectsWhat You’ll BringA minimum of 7 years of experience in the IT industry, with at least 5 years in cyber security and security product administrationExpertise in private cloud and container securityDemonstrated experience in log integration and incident handling, along with familiarity with advanced threat detection techniquesStrong analytical skills with a problem-solving mindsetFluency in English, with excellent written and verbal communication skillsStrong understanding of the MITRE ATT&CK Framework, NIST, ISO 27001, or similar security standardsStrong hands-on Linux security experienceStrong understanding of Windows and macOS security fundamentalsExperience in DLP and network security policy management (WAF, IPS)Proven Blue Team operations background and Purple Team collaboration mindsetHolding certifications such as CISSP, CISM, CCSP, CKAD, OSCP, or GIAC is a plusUp-to-date with cybersecurity trends and adaptable to new technologiesResearch-oriented and eager to learnComfortable working in a fast-paced startup cultureDiversity makes us stronger. Our diverse cultures, backgrounds, beliefs, values, abilities, and lifestyles help us learn from each other. We’re proud to strive for a genuinely diverse and inclusive workplace. We know we can do better though. That’s why we hire and promote people with equity and equality in mind.We will process your personal data as part of our recruitment procedures. To find out more, please consult our Candidate Privacy Notice.