SOC Engineer

Company DescriptionBuilding the bank of tomorrow takes more than skills.It means combining our differences to imagine, discuss, code, develop, test, learn… and celebrate every step together. Share our vibes? Join Swissquote to unleash your potential.We are the Swiss Leader in Online Banking and we provide trading, investing and banking services to +650’000 clients, through our performant and secured digital platforms.Our +1200 employees work in a flexible way, without dress code and in multicultural teams.By having a huge impact on the industry, they are growing their skills portfolio and boosting their career in a fast-pace environment. Have a look behind the scenes by checking Humans of Swissquote on Instagram.We are all in at Swissquote. As an equal opportunity employer, we welcome candidates from all backgrounds, experiences and perspectives to join our team and contribute to our shared success.Are you all in? Don’t be shy, apply!Job DescriptionYou will join our SOC Team within the Information Security Department to enhance our cybersecurity operations. This role is crucial in safeguarding a complex IT and cloud environment while driving improvements in Incident Management, Vulnerability Management, Threat Hunting, and Incident Response. You will collaborate closely with the IT and anti-fraud teams to fortify detection, response, and vulnerability management capabilities. By implementing strategic cybersecurity tools and frameworks, you will play a key role in protecting the organization's critical infrastructure.We are seeking a talented and committed threat hunter who can leverage their expertise and thrive in a dynamic, fast-paced environment. If you are eager to embrace this challenge, we look forward to receiving your application.ResponsibilitiesPerform real-time monitoring of security events, detect and respond to security alerts.Lead investigations, manage incident response processes, mitigate security threats, and enhance overall response strategies.Collaborate with IT and Anti-fraud teams to ensure effective implementation of security measures.Develop our Cyber Threat Intelligence platform.Conduct forensics investigations and threat-hunting campaigns.Stay up to date with cutting-edge adversary capabilities and vulnerabilities.Propose, plan, and execute Red Team operations based on realistic threats.QualificationsKnowledge of technologies and concepts such as SIEM, EDR, SOAR, Cloud, Networking, Windows, LinuxExperience or reasonable understanding of Information Security Understanding of the Cyber Threat Landscape, cybercrime economic model and threat actorsSolid analytical and critical thinking abilitiesPositive attitude and interest in learning new skillsStrong French and English communication skills, oral and writtenDesired Qualifications5+ years in cybersecurity operations, incident response, or engineering.Strong technical knowledge of threat management and security controls.Bachelor or Master in Computer Science or similarCISM, CEH, CompTIA Security+, CISSP, SANS GIACExperience with: Microsoft Defender XDR, Microsoft Sentinel, Elastic, OpenCTI, Python.Additional InformationSQ2