Security Operation Analyst L1

Information about the offer
  • Type of Employment: B2B or COW
  • Offer ID: CZ2505
  • Category: Customer Support
  • Place: Prague, Czech Republic
  • Minimal level of education: Secondary Education
  • Minimal experience: Between 2 and 5 years


For our new project we are searching candidates with basic technical overview in areas of operating systems, networks, databases who would like to deepen their knowledge in security area.


o Continuous processing of alarms from the SOAR queue, prioritized by the severity of each alarm
o Initial analysis (triage of the alarms)
- Identification of obvious false positives
- if necessary assignment to already existing alarms
o Processing of the alarms according to the customized playbooks
o Result of alarm processing:
- Identification as a false positive or
- Opening a security incident and assigning it to the customer’s ticketing system or
- Forwarding as alarm to L2 for further analysis and if necessary
- Feedback to SIEM Content Engineering for continuous improvement of the detection scenario
o Deliver reports and KPI's
o Respond to audit and regulator requests for information


- At least 2 years of working experience in IT on help desk/technical customer support position
- English on communicative level
- Czech or Slovak on communicative level

Nice to have but not necessary for this role:
-Ticketing tools (preferably OTRS) - Microfocus ArcSight SIEM and Logger
- Cisco / Sourcefire - CheckPoint FW
- Threat intelligence
- Sentinel One Endpoint Security
- Guardium DBAM
- Rapid7 scanner
- Linux & Windows


- Technical and personal trainings
- Language courses for foreigners
- Multisport card/Benefit Plus (contribution for leisure time activities)
- Pension and Life insurance contribution
- Up to 5 weeks of paid holidays according to length of employment
- Meal tickets (100 CZK/working day)
- Relocation bonus
- Personal Event Bonus
- Loyalty presents
- Team building activities and many others


Negotiable depending on candidate's seniority