Cyber ​​security engineer in abank

JSC "A-Bank" is looking for a Cybersecurity Engineer for its partner company "A-IT".

Requirements:

• 3+ years of experience in the field of cyber security, SOC/SecOps or Cloud Security.
• Practical experience with SIEM (Wazuh/ELK/OpenSearch): integration of log sources, detection rules, event analysis.
• Experience with AWS Security: IAM, CloudTrail, GuardDuty, Security Hub, VPC, WAF, KMS, Secrets Manager.
• Deep understanding of Linux (auditd, systemd, logs) and basic knowledge of Windows Server.
• Understanding of network technologies: TCP/IP, VPN, firewall, DNS, TLS.
• Automation skills (Bash/Python), working with API (AWS, Wazuh).
• Experience with PCI DSS or other regulatory standard preferred.
• Ukrainian - fluent, English - B1+ level for documentation.

Responsibilities:

• Administration and development of Wazuh SIEM: collection, normalization, correlation of events, development of detection rules, automatic reactions.
• Support and configuration of AWS security services: IAM, CloudTrail, Config, GuardDuty, Security Hub, VPC, WAF, KMS.
• Organization of SOC function processes: event monitoring, incident processing (L2/L3), log keeping, response playbooks.
• FIM implementation and support, audit logging, CDE critical system monitoring.
• Participation in the PCI DSS process: evidence preparation, log control, compliance with access requirements and monitoring.
• Identification and elimination of vulnerabilities in interaction with DevOps/administrators.
• Automation of security processes: scripts, integrations, configuration verification tools.

We offer:

• Competitive salary;
• Work in a friendly team;
• Training and professional development.