Key Facts

Remote From:

Georgia (USA)

Full time

English

Hard Skills

Other Skills

•
Incident Reporting
•
Analytical Thinking
•
Analytical Skills

SOFTSWISS

Computer Software / SaaS

About SOFTSWISS

SOFTSWISS is an international company and a widely-acclaimed iGaming expert. We were the very first online gambling software company to start working with cryptocurrencies. SOFTSWISS appeared in July 2009 in Minsk, Belarus. Today SOFTSWISS is a recognised industry leader in iGaming software solutions development. The company has an international team, which counts 1,400+ employees and has an official presence in Poland, Malta, Georgia, and Belarus. To date, the SOFTSWISS client network counts more than 500 iGaming brands. Projects powered by SOFTSWISS receive numerous awards and accolades from industry media. SOFTSWISS steadily enhances the products portfolio with continuous innovations and increases the quality of its services, providing customers with first-class industry solutions. Our values: - High-end solutions based on reliability, security and honesty - Expertise of a professional team with over 10 years of iGaming background - Innovative approach to product development and business processes Our Products: - Sportsbook Platform - Online Casino Platform - Game Aggregator - Jackpot Aggregator - Affilka (Affiliate Platform) - Managed Services Our Services: - First Line Player Support - Player Retention - Player Reactivation - VIP Player Support - Anti-fraud support Our solutions: - Crypto Casino Solution - White Label Casino Solution - Turnkey Casino Solution White Label solutions: - Operating under the SOFTSWISS gambling licences - Ready-to-use payment processing options - SOFTSWISS merchant accounts Why Us? - Over 10 years helping our clients to succeed in the industry - Focus on software security and stability - Top client service based on the client needs - Best industry professionals - Agile methodology at all levels - Cutting-edge innovations - Wide geographical presence Website: www.softswiss.com Email: order@softswiss.com SOFTSWISS. Winning Combination

Company type: Large

Industry: Computer Software / SaaS

Founded: 2018

Company size: 1001 - 5000

Website LinkedIn See all jobs →

Job description

Overview:

SOFTSWISS is hiring an Incident Response Analyst to join our Security Operations team. We are looking for a hands-on specialist who will be responsible for detecting, investigating, and responding to security incidents, while continuously improving SOC processes and automation to ensure fast and effective threat mitigation.

Purpose of the role:

In this role, you will be responsible for monitoring and responding to cybersecurity incidents, conducting in-depth investigations, and implementing remediation measures to prevent future threats. You will work closely with internal systems and processes to balance security and performance, while contributing to the development and automation of SOC workflows to improve overall incident response efficiency.

Key responsibilities:

Upgrade SOC processes & response automation;
Respond to cybersecurity incidents;
Immerse yourself in the specifics of systems and processes to achieve a balance of security and performance.
Investigate security incidents and instigate remedial measures to address breaches.
The position operates on a 2-on-2-off shift pattern, encompassing a 12-hour day shift, a 12-hour night shift the next day, and 2 free days after that.

Our stack:

Splunk;
Clickhouse;
Gitlab;
Python;
ELK;
Wazuh.

Required Experience:

Practice with SIEM, EDR, IDS/IPS, IRP/SOAR events analysis.
Familiarity with SecOps processes, i.e., monitoring, triaging, investigating, and threat intelligence.
More than one year of experience as an information security engineer/analyst.
Strong investigative and analytical problem-solving skills.
Intermediate or higher English level.

Nice to have:

Experience with Clickhouse, Splunk, Kafka, ELK, Graylog, etc.
Strong Linux system administration experience.
Expertise in network, host, and cloud-based analysis and investigation.
Experience with AWS, Azure, GCP, k8s, Docker infrastructure, and familiarity with attacks on them.
A strong understanding of the attack pipelines (MITRE ATT&CK Framework, Cyber Kill-Chain). -Familiarity with CI/CD, software development lifecycle, and Infrastructure-as-Code (Terraform/Ansible/etc).
Proficiency in automation (Bash/PowerShell, Python).
Experience with log collection, delivery, and normalization.
Strong knowledge in open source solutions of endpoint & infrastructure security, such as Audit.d, sysmon, apparmor, selinux, etc. -Fundamental static and dynamic malware analysis.
Offensive experience (penetration testing, red teaming).

Our Benefits:

Full-time work opportunities
Private insurance
An additional Day Off (1) per calendar year
Sports program compensation
Comprehensive Mental Health Programme
Free online English lessons with native speakers
Generous referral program
Training, internal workshops, and participation in international professional conferences and corporate events