Would you like to be part of our new adventure? Vodafone Group is launching its new technological HUB (MSH), an international center of excellence dedicated to research and development of technical solutions, such as Secure Networks, 5G and 6G development, Open RAN, IoT, MPN & MEC, and UCC for Vodafone Business, platforms, and enterprise solutions.
Come and join us to create the future together!
The Cybersecurity Threat Expert is a highly skilled specialist responsible for managing core and advanced SOC services, modular security services, and advisory and security consultancy services within the Vodafone Business Central Security Operations Centre (VB Central SOC). The role involves providing efficient, innovative, and leading-edge security guidance, and contributing to the operation, evolution, and scaling of the VB Central SOC security services. The expert will be part of a team of engineering specialists and Tier-3 security professionals ensuring the continuity and availability of key platform components, maintaining infrastructure according to best practices, and updating defenses against future cyber threats. Responsibilities include:
1. Setting up and delivering core SOC services in the Vodafone Business Central SOC, collaborating with L1 / L2 teams and other SOCs.
2. Deploying, configuring, and maintaining security tools and platforms (SIEM, SOAR, DLP, NG Firewalls, IPS, WAF, EDR / XDR).
3. Defining and improving cybersecurity processes with timely enhancements.
4. Developing threat lifecycle tools and best practices for threat detection, analysis, and incident response.
5. Utilizing threat intelligence services and malware sandboxes for advanced threat hunting.
6. Managing and maintaining internal SOC operations.
What you bring
* Bachelor’s Degree in Electronics or Computer Engineering (or related fields).
* At least 3 years of experience in security engineering, consulting, penetration testing, red teaming, and vulnerability assessments in complex ICT environments.
* Strong understanding of attacker tools, tactics, and techniques, with knowledge of MITRE ATT&CK and MITRE Shield frameworks.
* Proficiency with SIEM (QRadar, Splunk, Sentinel, Chronicle, McAfee, CryptoSIM, Logsign) and SOAR products.
* Experience with threat modeling (STRIDE, PASTA, FAIR, Security Cards), operational threat intelligence, and attack frameworks (MITRE ATT&CK, Cyber Kill Chain).
* Proficiency in scripting/programming languages such as Java, Bash, Python, and PowerShell.
* Experience with security technologies like Firewalls, IDS, IPS, and VPC.
* Certifications such as CISSP, CISM, OSCP, or CEH are preferred.
#J-18808-Ljbffr