SOC Senior Specialist | Romania in Bucuresti

Description & Requirements Who we are looking for ✔ Do you have experience investigating and responding to common cyber-attacks? ✔ Are you familiar with SOC operations, SOAR, and EDR technologies? ✔ Can you apply your understanding of cyber-attack methodologies and threat vectors to improve incident management processes and drive strategic SOC initiatives?Do you enjoy solving complex security challenges and working in a collaborative environment? If so, we invite you to join our team as an SOC Senior Specialist, where you’ll be at the forefront of detecting, investigating, and responding to cyber incidents, as well as providing expert guidance to design and optimize Security Operations Centers. Your expertise will play a key role in maintaining a strong security posture for our global clients, and in shaping the future of SOC capabilities through strategic advisory.  What we expect from you:Proven SOC Experience: Demonstrated background as a SOC Analyst, with in-depth knowledge of threat detection, incident response, and hands-on experience using SOAR and EDR technologies.Cybersecurity Fundamentals: Strong grasp of cybersecurity principles, including attack methodologies, threat vectors, risk management, and incident handling, alongside familiarity with vulnerability management tools to strengthen security posture.Advisory Skills: Experience conducting SOC gap analyses, designing SOC target operating models, preparing RFI/RFP documentation, and developing SOC technology architectures is a plus.Continuous Learning: Highly self-motivated and curious, with a commitment to staying informed on emerging cybersecurity trends and adapting to evolving threats.Technical Proficiency: Hands-on Python coding skills, threat hunting abilities, and threat intelligence knowledge are highly valued. Relevant SOC certifications (, CEH, CompTIA CySA+) are a plus. Your future role Your future role Incident Management: Investigating alerts, performing in-depth analysis of security events, and leading the response to incidents to mitigate threats swiftly. Detection Optimization: Tuning detection use cases (, SIEM correlation rules) to enhance SOC capabilities and reduce false positives. Automation & Orchestration: Developing automation and orchestration solutions to streamline SOC operations and minimize manual tasks. Threat Hunting: Proactively seeking out signs of malware or malicious activity within the infrastructure that may have bypassed existing security controls. SOC Advisory & Design: Performing SOC gap analyses to identify areas for operational and technical improvement. Defining and documenting SOC target operating models that align with clients’ strategic goals. Preparing and evaluating RFI/RFP documents to support vendor selection and partnership decisions. Architecting SOC technology solutions that integrate with broader cybersecurity and IT frameworks. Governance & Process: Contributing to the development and maintenance of SOC policies, processes, and procedures, ensuring alignment with industry best practices and regulatory requirements. Reporting & Stakeholder Engagement: Creating and presenting reports on incidents, investigations, and security threats, as well as findings from gap analyses to relevant stakeholders. Providing strategic recommendations to enhance overall security posture. What we offer Join our global team and work on innovative cybersecurity projects that drive real impact. We offer an environment that promotes learning and growth, giving you the chance to develop your skills while contributing to critical security initiatives. Be part of a team where your expertise is valued, and you can make a difference in shaping the future of cybersecurity   Fringe benefits:Flexible Benefits Plan – an allowance per month for benefits (eg medical subscription, meal tickets, private pension)​.2 additional days off per year for medical leave without a medical certificate​.Working in Hybrid Mode.Comprehensive travel insurance (both work and personal travel)​.Days off for special personal events, accordingly to the Internal Regulations​.Bookster subscription​.Learning & Development: LinkedIn Learning, Udemy for Business, getAbstract​.The employee assistance program: 24/7 consultancy (financial, psychological, legal)​.Teleworking allowance.Annual performance bonus.