Security Operations Analyst
Work
Salary(gross): from 4500 to 5500 EUR monthly
Apply till 17.04.2025
Full time
Description
Job description in English
This role works closely with teams across the group to identify and handle security incidents, ensuring that relevant security attacks are timely detected, investigated and mitigated. In addition, it reviews the security risks that our organization faces, executing appropriate responses to ensure our security posture remains aligned with the needs of our organization.
Job responsibilities:
Monitor security events and identify potential incidents across the organization environments;
• Review alerts, assess risks and prioritize incident investigation efforts;
• Develop security tools and integrations to automate security operation processes;
• Interface with technical and business units to identify the source of the incidents and the appropriate resolution;
• Identify lessons learned together with other organizational teams;
• Investigate security incidents. Produce accurate and timely reports on Information Security incidents so that mitigation measures can be effectively decided and implemented;
• Assist technical teams in gathering incident evidence and remediating issues;
• Operate and Tune security consoles configuration;
• Conduct forensic analysis as required during the investigation of incidents;
• Support the fraud investigation/compliance teams on their incident investigation;
• Occasionally respond to critical incidents on a 24/7 basis.
Our expectations:
• At least five years experience in a similar Information Security position;
• Experience developing security tools and open source projects;
• Attention to detail and great problem solving skills;
• Outstanding knowledge of the technical foundations behind networking,
• operating systems and applications (TCP/IP, Linux, Windows, Web technologies and other networking protocols);
• Good understanding of Information Security processes and theory;
• Vulnerability research and exploitation skills;
• Autonomous and self-organized;
• Good communication skills and customer-facing experience.
We count as a bonus if you have:
• Experience in vulnerability management, risk management, traffic and packet analysis
• Security certifications (CCSP, CISM, CISSP, etc.), related certifications (CISA, CGRC, etc.) or similar qualifications
• Experience configuring and maintaining SIEM tools
• Experience in creation of log correlation and incident detection rules
• Experience managing security consoles and log correlation solutions
• Online Gaming security experience
• Experience in forensic analysis
• Experience in security assessments
• Experience securing Microsoft protocols
• Regulatory and industry standards work: ISO 27001, SOC 2, ITGC, PCI DSS, etc.
We offer:
• Great opportunity to take part in the development of a growth- and innovation-driven company and build its future.
• Dynamic work in a rapidly growing international company with personal development possibilities.
• Professional team with various international backgrounds to collaborate.
• Opportunity for career development.
• Wide benefits package: annual company performance bonus, extra day off on your birthday, dedicated days off for your physical and mental health, additional vacation days depending on the length of employment, health insurance policy, wellness and team-building events, dedicated budget for your training and development, paid online consultations with certified therapists and so much more!
Darba apraksts latviešu valodā
Šī loma cieši sadarbojas ar komandām visā grupā, lai identificētu un apstrādātu drošības riskus, nodrošinot, ka attiecīgie drošības uzbrukumi tiek savlaicīgi atklāti, izmeklēti un mazināti. Kā arī šajā lomā tiek izvērtēti drošības riski, ar kuriem saskaras uzņēmums, veicot atbilstošas darbības, lai nodrošinātu, ka mūsu drošības pozīcija joprojām atbilst uzņēmuma vajadzībām.
Darba pienākumi:
· Uzraudzīt drošības notikumus un identificēt iespējamos riskus visā uzņēmumā vidē;
· Pārskatīt trauksmes signālus, novērtēt riskus un noteikt prioritātes incidentu izmeklēšanas aktivitātēm;
· Izstrādāt drošības rīkus un integrācijas, lai automatizētu drošības operāciju procesus;
· Sadarboties ar tehniskajām un biznesa nodaļām, lai identificētu incidentu avotu un piemērotu risinājumu;
· Kopā ar citām komandām identificēt un mācīties no pieļautajām kļūdām;
· Izmeklēt drošības incidentus. Sagatavot precīzus un savlaicīgus ziņojumus par informācijas drošības incidentiem, lai efektīvi izlemtu par risku mazināšanas pasākumiem un īstenotu tos;
· Palīdzēt tehniskajām komandām incidentu pierādījumu vākšanā un problēmu novēršanā;
· Darbināt un pielāgot drošības konsoļu konfigurāciju;
· Veikt kriminālistikas analīzi, kas nepieciešama incidentu izmeklēšanas laikā;
· Atbalstīt krāpšanas izmeklēšanas/atbilstības komandas to incidentu izmeklēšanā;
· Reizēm reaģēt uz kritiskiem gadījumiem jebkurā diennakts laikā.
No Tevis sagaidām:
· Vismaz piecu gadu pieredze līdzīgā informācijas drošības amatā;
· Pieredze drošības rīku un atvērtā koda projektu izstrādē;
· Uzmanība detaļām un lieliskas problēmu risināšanas prasmes;
· Izcilas zināšanas par tīkla izveides tehniskajiem pamatiem, operētājsistēmām un lietojumprogrammām (TCP/IP, Linux, Windows, Web tehnoloģijas un citi tīkla protokoli);
· Laba izpratne par informācijas drošības procesiem un teoriju;
· Prasmes veikt vājo punktu un ļaunprātigas izmantošanas risku izpēti
· Patstāvīgs un pašorganizēts;
· Labas komunikācijas prasmes un pieredze saskarsmē ar klientiem.
Mēs uzskatām par bonusu, ja jums ir:
· Pieredze ievainojamības vadībā, riska pārvaldībā, datu plūsmas un packet analīzē;
· Drošības sertifikāti (CCSP, CISM, CISSP utt.), saistītie sertifikāti (CISA, CGRC utt.) vai līdzīgas kvalifikācijas;
· Pieredze SIEM rīku konfigurēšanā un uzturēšanā;
· Pieredze ierakstu korelācijas un incidentu noteikšanas noteikumu izveidē;
· Pieredze drošības konsoļu un ierakstu korelācijas risinājumu pārvaldībā;
· Pieredze online azartspēļu drošības vidē;
· Pieredze tiesu ekspertīzē/pārkāpumu izmeklēšanā;
· Pieredze drošības novērtēšanā;
· Pieredze Microsoft protokolu nodrošināšanā;
· Pieredze ar normatīvajiem un nozares standartiem: ISO 27001, SOC 2, ITGC, PCI DSS utt.
Mēs piedāvājam:
· Lieliska iespēja piedalīties uz izaugsmi un inovācijām virzīta uzņēmuma attīstībā un veidot tā nākotni.
· Dinamisks darbs strauji augošā starptautiskā uzņēmumā ar personīgās attīstības iespējām.
· Profesionāla komanda ar dažādu starptautisku pieredzi, lai sadarbotos.
· Iespējas karjeras izaugsmei.
· Plaša priekšrocību paka: ikgadējā prēmija, papildu brīvdiena dzimšanas dienā, īpašas brīvdienas fiziskajai un garīgajai veselībai, papildu atvaļinājuma dienas atkarībā no nodarbinātības ilguma, veselības apdrošināšanas polise, labsajūtas un komandas saliedēšanas pasākumi, īpašs budžets apmācībām un attīstībai, bezmaksas tiešsaistes konsultācijas ar sertificētiem psihologiem un vēl daudz vairāk!
Location
Vacancies you might be interested in
CNC (ciparu vadības) datorvadāmu metālapstrādes darba galdu operators
Hansa Flex Hidraulika, SIA
- Internship • till 21.04.2025
Kickstart Your Fintech Career – Customer Support Internship at Paymentology!
Paymentology Latvia SIA
- Internship • till 15.04.2025
Mājaslapu izstrādātājs
T Media Group
- Internship • till 20.04.2025
Praktikants IT Departamentā
Orkla Latvija
- Internship • till 18.04.2025
About the company
Entain
We are Entain - one of the biggest iGaming companies worldwide. Our vision is to be the world leader in betting, gaming and interactive entertainment. We will achieve this through our focus on sustainability and growth, transforming our sector for our players, for ourselves and for the good of entertainment.
The Entain journey began on 9th December 2020, but our brands have been making history since the 1880s. Licensed in 27 jurisdictions, we’re now home to a global family of more than 25 iconic names - such big names as BetMGM, Bwin, Coral, Ladbrokes.
In Entain we employ around 24,000 people in 19 countries across five continents, with retail operations in the UK, Ireland, Belgium and Italy.
ENLABS, which stands for Entertainment Laboratories, was acquired by Entain and joined the Entain family in April of 2021.
In ENLABS (from recent - part of Entain) we are a company that creates entertainment through innovative thinking by offering our customers industry-leading gaming content across all product verticals coupled with outstanding localized service. We are the largest iGaming operator in the Baltics with an ambition to expand well beyond, becoming one of the leading online gaming companies in other regions of Europe. We focus on regulated or soon to be regulated markets and promote responsible gambling. Regulation means a guarantee of fair play, player protection and local gambling tax contributions. As part of portfolio ENLABS owns a group of licensed online gaming companies located in several European jurisdictions. We operate a portfolio of well-known brands including our flagship brand “Optibet”, "Klondaika"and "Ninja Casino".
Today ENLABS (incorporated into Entain as of recent) is a multi-brand online gaming company with 650+ people from more than 15 countries situated in offices across Riga (headquarters), Tallinn, Vilnius, Malta, Marbella, Stockholm and Minsk. We are proud to be the leading iGaming operator in the Baltic States, and one of the fastest growing operators in Eastern Europe.