SOC Engineer

Company Description

Building the bank of tomorrow takes more than skills. 
It means combining our differences to imagine, discuss, code, develop, test, learn… and celebrate every step together. Share our vibes? Join Swissquote to unleash your potential.

We are the Swiss Leader in Online Banking and we provide trading, investing and banking services to +500’000 clients, through our performant and secured digital platforms.

Our +1000 employees work in a flexible way, without dress code and in multicultural teams. 
By having a huge impact on the industry, they are growing their skills portfolio and boosting their career in a fast-pace environment.

We are all in at Swissquote. As an equal opportunity employer, we welcome candidates from all backgrounds, experiences and perspectives to join our team and contribute to our shared success.

Are you all in? Don’t be shy, apply!

Job Description

You will join our SOC Team within the Information Security Department to enhance our cybersecurity operations. This role is crucial in safeguarding a complex IT and cloud environment while driving improvements in Incident Management, Vulnerability Management, Threat Hunting, and Incident Response. You will collaborate closely with the IT and anti-fraud teams to fortify detection, response, and vulnerability management capabilities. By implementing strategic cybersecurity tools and frameworks, you will play a key role in protecting the organization's critical infrastructure.

We are seeking a talented and committed threat hunter who can leverage their expertise and thrive in a dynamic, fast-paced environment. If you are eager to embrace this challenge, we look forward to receiving your application.

Responsibilities

• Perform real-time monitoring of security events, detect and respond to security alerts.
• Lead investigations, manage incident response processes, mitigate security threats, and enhance overall response strategies.
• Collaborate with IT and Anti-fraud teams to ensure effective implementation of security measures.
• Develop our Cyber Threat Intelligence platform.
• Conduct forensics investigations and threat-hunting campaigns.
• Stay up to date with cutting-edge adversary capabilities and vulnerabilities.
• Propose, plan, and execute Red Team operations based on realistic threats.

Qualifications

• Knowledge of technologies and concepts such as SIEM, EDR, SOAR, Cloud, Networking, Windows, Linux
• Experience or reasonable understanding of Information Security 
• Understanding of the Cyber Threat Landscape, cybercrime economic model and threat actors
• Solid analytical and critical thinking abilities
• Positive attitude and interest in learning new skills
• Strong French and English communication skills, oral and written

Desired Qualifications

• 5+ years in cybersecurity operations, incident response, or engineering.
• Strong technical knowledge of threat management and security controls.
• Bachelor or Master in Computer Science or similar
• CISM, CEH, CompTIA Security+, CISSP, SANS GIAC
• Experience with: Microsoft Defender XDR, Microsoft Sentinel, Elastic, OpenCTI, Python.

Additional Information

SQ2