SOC L3 Engineer

SOC Level 3 Engineer - to join the EY Romania team and perform real-time management of complex security incidents, overseeing SOC activities.

You will be part of a high performing team, who works together cohesively and effectively to achieve our and our clients’ goals and objectives. Trust and respect are our core values, we embrace diversity and inclusion and foster a learning culture, to continuously improve both individually and as a team.

Potential for working on limited on call requirements or different schedule.

Key Responsibilities:

• Provide seniority and oversight for a SOC shift as needed.
• Conducts complex investigations and providing advice to L2 Security Analysts.
• Manage and lead High or Critical severity incident resolution.
• Develop customized scripts or procedures to automate the repetitive tasks and improve the efficiency of incident response activities.
• Provide expert advice on remediation and recovery efforts and develop threat remediation strategies.
• Perform proactive analysis of the attack surface and advising on potential threats and attack vectors.
• Provide feedback on security control capability gaps based on security intrusion trends. Stay abreast of the latest cyber security trends and developments.
• Assist in developing, coordinating, and implementing SOC documentation.
• Provide input to SOC operation metrics and reports.

To qualify for the role, you must have:

• Completed technical higher education in the field of computer science or related field
• Minimum of 5 years of professional experience in SOC operations and/or incident response
• Understanding of technologies and solutions utilized in cybersecurity and networks (SIEM, SOAR, Firewalls, IAM, IDS/IPS, End Point Protection, Threat Management/Intelligence.)
• Familiarity with security frameworks, standards, and guidelines.
• Knowledge of current hacking techniques, vulnerability disclosures, data breach incidents, and security analysis techniques
• Ability to work with complex problems where analysis of situations or data requires an in-depth evaluation of variable factors.
• Excellent troubleshooting and problem-solving skills.
• Experience in SOC documentation development
• Strong communication skills and the ability to work with various stakeholders
• Full professional proficiency in English, especially in technical writing and oral communications
• Demonstrated integrity in a professional environment

Nice to have:

• Cybersecurity certifications e.g., CompTIA Security+, CEH
• Any vendor cybersecurity or cloud related certifications (AWS, Microsoft, Google Cloud, etc.)

What working at EY offers:

• Skills development in the cybersecurity domain
• Executive communication skills
• Opportunities for professional development at EY
• Certifications via external and internal training
• Conference attendance
• Medical subscription 
• Life insurance 
• Vacation Days for Public Holidays during Weekend  
• Other flexible benefits