Position: Cybersecurity Analyst L1


Essential duties and responsibilities:

We are looking for a Cybersecurity Analyst L1 for our customer in the Czech republic to join the Security Operations Center working for B2B customers.
The team is responsible for detection and response to cybersecurity incidents in various infrastructures.
SOC L1 specialist in IT security monitoring and analysis provides expertise in evaluation of IT suspicious security events and attacks.
Basic experience with SIEM operations, antiDDoS platform is an advantage.

The activity consists of:
Processing of alarms in the ticketing tool
Initial analysis (triage) of the alarms
Using of customized playbooks
Escalation of alarms to SOC L2 layer for further analysis, if necessary
Feedback to SIEM Content Engineering for continuous improvement of the detection scenarios
AntiDDoS platform operations
EDR operation (preferably CrowdStrike Falcon, Microsoft Defender)
Cooperation to cyber incidents solving
Communication with customers


Prague, home office

Commence date:


Other requirements:

University degree in IT branch or at least two years’ experience in IT security or IT operations.
Advanced knowledge of networking and network protocols.
Basic knowledge of operation systems, databases and security.
Basic experience with SIEM (Microfocus ArcSight, Q-Radar, MS Sentinel, …)
Basic experience with ticketing tool (preferably OTRS Storm, JIRA)
Basic experience with EDR platforms (preferably CrowdStrike Falcon, Microsoft Defender)
Basic orientation in security (MITRE metrics, Cyber Killchain)
Communication in English, Czech/Slovak needed, German is an advantage.
Shift work

We offer:

Team of friendly people
Flexible work hours, home office
Stable environment and well-defined responsibilities
Opportunity to support other teams in various cybersecurity topics
Trainings, professional certifications


depending on experience, min. 1800€ + extra allowance for the shift work