Senior Security Engineer – Blue Team

This is a fully remote position, open to applicants in Turkey.

📋 Description

• Management and upkeep of SIEM Tools: Configuring, monitoring, and enhancing SIEM features.

• Rule Development and Enhancement: Creating rules, reports, dashboards, and use cases to identify threats and attacks.

• Threat Evaluation: Assessing threats utilizing logs, IPS/IDS, cyber intelligence reports, and other data sources.

• Integration of MITRE ATT&CK Framework: Evaluating existing rules and crafting new attack detection scenarios.

• Incident Management: Actively participating in the detection, analysis, and mitigation of security incidents.

• Reduction of False Positives: Collaborating with CDC Engineers to refine detection logic and reduce false positives.

• Log Oversight: Importing and resolving issues with logs from various security products and company-wide log sources.

• Security Metrics and Reporting: Establishing and overseeing key security metrics, generating dashboards and reports.

• Management of Database and EDR Tools: Maintaining, optimizing, and enhancing security configurations.

• Cyber Intelligence and Threat Hunting: Keeping abreast of the latest cyber threats and incorporating threat intelligence into security operations.

⛳️ Requirements

• Bachelor's degree in Computer Engineering, Electronics Engineering, or a related field.

• At least 4 years of experience in IT Security Architecture & Services.

• Solid knowledge and practical experience with security technologies such as WAFs, SIEM, SOAR, EDR, ETP, vulnerability scanning tools, and deception technologies.

• Practical experience with one of the SOAR tools (e.g., XSOAR, Resilient) is preferred.

• Strong comprehension of network security devices (e.g., firewalls, IPS/IDS).

• Familiarity with Syslog, HTTP, and database log formats.

• Experience with Unix and Windows operating systems.

• Profound understanding of the attack lifecycle and its phases.

• Proficient in Python or other scripting languages.

• Possessing or willing to obtain the AWS Security Specialist Certificate.

• Ideally holding industry-recognized certifications (e.g., CEH, AWS Sec).

• Splunk Core Certified Power User certification is an advantage.

• Strong analytical, critical thinking, and problem-solving abilities.

• Capability to effectively communicate technical details to various stakeholders.

• A proactive and inquisitive mindset with a strong interest in researching emerging cybersecurity threats and trends.

🏝️ Benefits

• Enjoy a monthly meal allowance designed to enhance your daily routine.

• Access comprehensive private health insurance.

• Feed your curiosity with access to Spotify, LinkedIn Learning, Blinkist, MasterClass, Neoskola, and CloudGuru.

• Level up with internal trainings covering AI fundamentals, coding, foreign languages, and a wide range of personal development skills.

• Be part of a diverse team that’s as global as it gets, where every voice is heard and 50+ nationalities build together.

• Become a Shareowner through our eligibility-based “ESOP” and own a piece of what you build.

• Help build the team you want to work with and enjoy rewarding referral bonuses.

• Opportunities to give back to your community through volunteering and purpose-driven social impact projects.

• From global retreats to team-building activities, expect year-round events that turn into lifelong memories.

• Get inspired by the greatest minds in the tech industry through events like our Tech & Dev Talks.

• Work from anywhere in Turkey through our fully remote setup.