Responsibilities
- Support the OLX Security Operations Center (SOC) by assisting with the incident response and its lifecycle
- Contribute to incident response training for the organization
- Assist in integrating our platforms and services with the SOC
- Participate in “protect, detect, and respond” engineering tasks
- Participate in Threat Hunting tasks
- Participate in improving our threat intelligence system
- Help develop, improve, and manage alerts of automated escalation processes
- Work on custom integrations, which may require development skills in Python and Bash in containerized environments such as Kubernetes
- Collaborate with other teams to streamline security across OLX, including Tech, Privacy, and Compliance teams
Requirements
- 4-6 years of experience working in a Security
- 4-6 years of experience with the Elastic stack for SIEM
- Experience in Incident Response and Security Operations within a dynamic and evolving environment, including Cloud technologies (IaaS, PaaS, SaaS)
- 4-6 years of experience working with Cloud environments (AWS, GCP, Azure)
- Understanding of modern Security technologies, especially for customer-centric applications, WAF, SSDLC, IAM, IDS/IPS, SOAR, SIEM, MDM, XDR, and AV
- Experience in most common Operating Systems and Networks
- Knowledge of pager applications for alert management and escalation
- Basic understanding of concepts like least privilege, agile, continuous integration and continuous delivery (CI/CD), infrastructure as code, and containerization orchestration
- Some familiarity with Security and Privacy frameworks and best practices, such as NIST, ISO27001, CIS, PCI DSS, GDPR and NIS2
