Roles:
Security
Considering candidates from:
Estonia, Finland, Malta and Sweden
Estonia, Finland, Malta and Sweden
Work arrangement: Onsite or hybrid
Industry: Information Technology & Services
Language: English
Level: Senior
Required experience: 5+ years
Relocation: Not paid
Visa support: Provided
Size: 201 - 500 employees
Company
The company was founded in 2010 with the goal of simplifying B2B content delivery for the modern iGaming landscape. Via a quick one-time integration, they provide access to a roster of 1000+ casino games and a diverse range of proprietary products, including Poker, Bingo and its own rapidly expanding slot portfolio. The high-quality aggregated content is provided through its selected partners.
Description
Now the company is looking for an experienced Detection & Incident Response Engineer to transform their security operations capability and ways of working. In this role, you will be at the core of detecting, investigating and responding to security threats, while driving automation and improving detection coverage across the organisation.
Key Responsibilities
- Build and continuously improve security monitoring and alerting capabilities
- Investigate security events and operate the incident response process end-to-end
- Design, implement and tune detection rules and alerts to maximise effectiveness and reduce noise
- Own and maintain incident response procedures and alert playbooks
- Perform threat intelligence activities to enhance detection and response capabilities
- Monitor logs and respond to alerts in a timely and effective manner
- Integrate security tools and data sources into detection and alerting pipelines
- Configure and optimise Security Orchestration, Automation and Response (SOAR) workflows
- Enhance our DLP monitoring
- Contribute to broader security initiatives and tasks as required
Requirements
- Strong SOC and security operations experience
- Hands-on experience with SIEM platforms (e.g. Elastic, Microsoft Sentinel)
- Proficiency in KQL
- Solid incident response experience
- Experience with automation and orchestration (SOAR)
- Understanding of SOAP and security integrations
Certifications (preferred)
- SC-200 – Microsoft Security Operations Analyst
- GIAC certifications (e.g. GCIH, GCFA, GNFA, GCIA, GMON, GCDA, GDAT)
- Elastic certifications
Nice to have
- Experience participating in blue/purple team exercises
- Experience within iGaming or other regulated industries
- Bachelor’s degree in Computer Science or similar
Benefits and conditions:
- Trial period: 4 months
- Hybrid work (3 days a week in the office)
- Sport and health benefits
- Team events
- Budget for self-education
Interview process:
- Intro call with Toughbyte
- Call with the CIO
- Call with the Hiring Manager
- Technical test
- Call with the CIO and the Hiring Manager
- HR call and reference check