Would you like to be part of our new adventure? Vodafone Group is launching its new technological HUB (MSH), an international center of excellence dedicated to research and development of technical solutions, such as Secure Networks, 5G and 6G development, Open RAN, IoT, MPN & MEC, and UCC for Vodafone Business, platforms, and enterprise solutions.
Come and join us to create the future together!
Role: Cybersecurity Threat Expert
The Cybersecurity Threat Expert is a highly skilled specialist responsible for managing core and advanced SOC services, modular security services, and advisory and security consultancy services at the Vodafone Business Central Security Operations Centre (VB Central SOC). They will provide efficient, innovative, and leading-edge security guidance, and key input to operate, evolve, and scale the VB Central SOC security services. The role involves working with a team of engineering experts and Tier-3 security specialists to ensure the continuity and availability of the SOC's key platform components, maintaining infrastructure according to best practices, and keeping systems up-to-date against future cyber threats. Key responsibilities include:
1. Setting up and delivering core SOC services in the Vodafone Business Central SOC, collaborating with L1 / L2 Central SOC teams and other SOCs.
2. Deploying, configuring, and maintaining security tools and platforms (SIEM, SOAR, DLP, NG Firewalls, IPS, WAF, EDR / XDR).
3. Defining and improving cybersecurity processes to ensure timely enhancements.
4. Developing threat lifecycle tools and best practices for threat detection, analysis, and incident response.
5. Using threat intelligence services and malware sandboxes for advanced threat hunting.
6. Managing and maintaining internal SOC operations.
What you bring
* Bachelor’s Degree in engineering disciplines (preferably Electronics or Computer Engineering).
* At least 3 years of experience in security engineering, consulting, penetration testing, red teaming, and vulnerability assessments in complex ICT environments.
* Strong understanding of attacker tools, tactics, and techniques, with knowledge of MITRE ATT&CK and MITRE Shield frameworks.
* Proficiency in security tools and platforms such as SIEM (QRadar, Splunk, Sentinel, Chronicle, McAfee, CryptoSIM, Logsign) and SOAR products.
* Experience with threat modeling methodologies (STRIDE, PASTA, FAIR, Security Cards), operational threat intelligence, and attack frameworks (MITRE ATT&CK, Cyber Kill Chain).
* Proficiency in scripting and programming languages like Java, Bash, Python, PowerShell.
* Experience with security technologies such as Firewalls, IDS, IPS, and VPC.
* Certifications like CISSP, CISM, OSCP, or CEH are expected.
#J-18808-Ljbffr