SOAR Engineer

Who are we?

It all starts with the mission: NVISO is here to protect European society from potentially devastating cyber attacks! This means we offer cyber security services to private and governmental organizations to help them better prepare for, prevent, detect and respond to cyber security incidents.

All of this is built on four fundamental values that define who we are: We are Proud, We Break Barriers, We Care and No BS!

Tasks

As a SOAR Engineer you will:

• Work closely with the Security Operations Center (SOC) and Security Engineering teams to improve existing automation and deliver resilient security solutions
• Assess, design, and improve SOC processes and workflows with a focus on integrating automation through Security Orchestration, Automation and Response (SOAR) tools and technologies
• Maintain and further develop the existing Automation capabilities
• Implement new SOC automation and ensure continued compatibility with existing detection and response tools
• Integrate new logging sources and build playbooks to properly triage and respond to security incidents while reducing the time needed to analyze each event
• Develop scripts to automate current detection and response workflows
• Analyze SOC alerts statistics and workflows to reduce false positives and adequately focus engineering efforts
• Build playbooks to enrich logs and alert results to provide a comprehensive view for SOC analysts
• Research and develop the usage of Artificial Intelligence into the workflows to further reduce the manual effort required by the SOC analyst to investigate alerts.

You will be trained on the job in:

Concepts

• SOAR Engineering Design
• Automation Concepts
• Security Operations
• DevOps
• Agile Methodology

Tools

• Cortex XSOAR 8

• GitHub:

• Repositories

• Actions

• CoPilot

Requirements

Significant theoretical and practical knowledge in the following areas:

• Knowledge of Linux operating systems
• REST APIs
• Regular expressions
• Python scripting
• Advanced troubleshooting skills
• Strong written and verbal communication skills
• Attention to detail and great organizational skills
• You hold citizenship in one of the 32 NATO member states

Benefits

At NVISO, we care. We are committed to offering you a highly competitive remuneration package including financial and non-financial components:

• A training budget of 10.000€ and 10 days every 2 years.
• Flexible working model and home office possibilities (+working abroad options).
• Statutory leave plus 5 additional leave days by NVISO.
• Additional benefits on a monthly and annual basis.
• An entrepreneurial and agile company, where you will be stimulated and supported in driving new initiatives (either through internal innovation or by improving our service offering), without losing sight of having fun!
• Working and learning from the best people in the European cyber security industry. We have multiple SANS Instructors working at NVISO, our staff has presented at popular hacking conferences (BlackHat, BruCON, OWASP, etc) and all of our technical staff can acquire deep technical security certifications (GSE, GXPN, GREM, GCFA, OSCP, etc).
• Our commitment to coach and counsel you and help you grow; each employee receives a personal coach within the team, whose role is to ensure your well-being and helps you grow in your career!

IF YOU’RE INTERESTED, PLEASE SEND US YOUR APPLICATION!

WE’RE LOOKING FORWARD TO MEETING YOU!

Disclaimer on the Use of AI Tools in the Application Process

Please be aware that the creation and submission of application documents (e.g. CV, cover letter, case studies, etc.) using AI-powered tools is only permitted to a limited extent.

Our expectations:

• Application documents must authentically reflect your own qualifications, personality, and motivation.
• The use of AI for supportive purposes (e.g. spell-checking, improving wording) is acceptable.
• Fully generated application documents created by AI without personal adaptation or review are not permitted.
• Under no circumstances may NVISO information, data, or documents be uploaded to or processed by external AI tools.

We reserve the right to exclude applications from the selection and interview process that are clearly created primarily or exclusively by AI and show no recognizable personal input.

The purpose of this policy is to ensure a fair and transparent recruitment process and to obtain an authentic impression of our applicants.