Introduction
ECQ (E-CQURITY) is a leading information system security firm established to provide security assessment services and proactive security management solutions. In face of the ever changing technology, we ensure our customers always have the best protection for their business through our continuous innovation, dedication, and enthusiasm in exploring security technology's domain.
We are looking for a dedicated Security Engineer (SecOps) to join our passionate offensive security team of talented security researchers. If you're someone who loves exploring how things work - and how to make them more secure - we need you on board.
Find more about us at: https://e-cq.net/
Responsibilities
- Execute pre-defined Threat Hunting playbooks to identify anomalies in EDR and SIEM data.
- Assist in Compromise Assessments by collecting and aggregating forensic artifacts (logs, memory images, prefetch files) and perform initial Assessment with pre-defined tools/guidelines and then transfer to senior review.
- Monitor and analyze network traffic for signs of C2 communication or lateral movement.
- Act as Tier 1 in MDR, monitoring and alert triaging on enterprise XDR Solutions (Cortex XDR, Microsoft Sentinel) and follow the operation process. Note: This role doesn't require working in a 24/7 SOC environment.
- Deployment: Assist in the installation, health-checking and configuration of security agents/tooling (EDR/XDR, SIEM, Firewall,..) across diverse environments (both internal and customer side).
- Basic Scripting: Write and maintain simple Python or PowerShell scripts to automate tasks.
- System Operation: Participate in the System Operations team, to assist in daily operations.
- Perform initial technical analysis of escalated security alerts, determining scope and impact.
- Help document Standard Operating Procedures (SOPs) for new detection rules.
- Participate in tabletop exercises to improve the team's response speed.
Requirements
- 1 - 3 years of experience in a SOC, Network Operations Center (NOC), or General IT roles.
- A strong foundational understanding of how data moves across a network to ensure you can distinguish between normal and malicious behavior.
- Network Protocols: Solid understanding of the OSI Model and the TCP/IP stack.
- Operating System: Familiarity with Windows and *nix, kind of know-how and be able to perform troubleshooting independently.
- Network Services: Familiarity with some basic Network services (DHCP, DNS, SSH,...). You may know how to set up and configure them properly.
- Log Analysis: Basic experience reading logs from Firewalls, IDS/IPS, and Web Proxies.
- Scripting: Foundational knowledge of PowerShell, Python, or Bash (e.g., ability to read a script and make minor modifications).
- Hands-on: Experience with free/open source tools like SysInternals Suite, Nirsofts, Wireshark, uac,...
Our offers
- Attractive remuneration package with competitive compensation scheme.
- 14 days annual leave with increment of 01 leave for each 03 years of continuous service.
- Wellness leave (4 days per year), birthday leave, and other attractive paid leave schemes per the Company's policies.
- Bonuses: Public holiday, Tet holiday, project, 13-month salary, etc. (subjected to company's discretion).
- Free lunch, cafeteria, and parking.
- A comfortable working environment that values flexibility, friendliness, and supportive team spirit.
- Recreational activities: Company trip, team building, bonding, internal events, etc.
- Premium private healthcare insurance after successful completion of probation.
- Annual premium health check-up package.
- Continuous learning - sharing - improvement culture, encouraging initiative and creativity in problem-solving.
- Career growth opportunities depending on your capability and career goals.
Working location: Hoang Hoa Tham St., Gia Dinh Ward (Binh Thanh District), HCMC
Working hours: 9a.m. to 6p.m., Monday to Friday
Contact: ECQ HR Department (Mr. Hien - 0382 480 012 or [Confidential Information])
Send your resume to [HIDDEN TEXT] for application and/or further information.
