Security Operations Center Analyst

Job Description:

KBC Global Services is the engine behind KBC Group – a leading bank-insurance group with over 41,000  talented employees serving more than 12 million clients across Europe.

Since 2021, we have been supporting the digital transformation of KBC Group providing software development, QA, AI and other IT solutions working on a wide range of projects combining classical IT with digital banking. 

Our community accommodates talented professionals with years of experience as well as recent university graduates of different backgrounds who are results-driven and passionate about the success of our company.


What does this position entail?
Our customers and employees deserve to sleep on their two ears, even though cyber-attacks are becoming more frequent. As a Security Operations Center Analyst, you and your colleagues play a big role in their peace of mind. You review incidents and help determine what needs to be done. 
You strengthen the Security Threat Monitoring team within our Security Operations Center. This is a team of experts who are committed to cybersecurity every day. 
Monitoring existing security processes, but also making them better. Solving problems, but also preventing them. In a nutshell, that's what you do as a Incident response analyst.


What do we expect from you?

  • You monitor the security of our critical servers and systems.
  • You monitor the alarms generated by our security systems and take action on them: you set priorities and escalate an issue when necessary.
  • Based on your knowledge of attack techniques, you will help to find the root cause of security alarms. For this you dive into the log files of servers and systems.
  • You will test and fine tune security alarms and incident response procedures.
  • You will discuss within the teams what to do in case of incidents and how to prevent them in the future.
  • You attend regular team meetings and scrums
  • You document the context of the incident.
  • You help colleagues who are resolving the incident with additional analyses, if necessary.
  • You help ensure that we are working according to the right priorities.
  • Depending on the action taken on the incident, you close it, put it on hold, have it looked at again or escalate it. Your guide here is our runbook. You also provide suggestions on what action to take.
  • You participate in sessions on continuous improvement and help think through these questions:


Technical Skills:

  • You have a broad view on the IT Operating systems & middleware (Windows, Unix, Linux, databases) and networks;
  • You have general to good knowledge of malware (types) and cyber-attack techniques (the kill chain);

Other pluses - Knowledge of and experience with:

  • security tools for detection and analysis security events
  • ticketing systems
  • network security, firewall, IDS

Recruiter name:

Militsa Atanasova Daskalova


Contract Type:  Full-time
Category:  IT
Level of Experience:  1. Junior (0->2 years)
Region:  Bulgaria - Sofia
Company:  KBC Global Services Bulgaria Branch
Job requisition ID:  78887