Security Operations Engineer

About Aurify

Aurify is committed to strengthening our teams with the best resources who share a passion for IT excellence and AI innovation. We are always welcoming new talent. Our mission is to empower businesses worldwide with secure, seamless, and cost-effective cloud, DevOps, and AI-driven solutions, 24/7, all while ensuring strict security compliance. Our goal is to become a leading IT service provider, starting with a strong foundation in Belgium and expanding beyond Europe. Our diverse, international team of experienced IT and AI professionals is key. We prioritize continuous learning, diverse certifications, recruiting top talent, and adopting cutting-edge technologies that add value to our clients.

About our client

Our client helps organizations digitize and streamline processes (order-to-cash, procure-to-pay) via a cloud-based open network connecting consumers and businesses globally. This network enables collaboration, digital interactions, document exchange, payments, and cash flow optimization, using tools from mobile apps to APIs. As regulation increases, all roles require background checks including identity, degree, criminal record, and employment verification.

The position

Are you passionate about cybersecurity and eager to work in advanced security operations We're expanding our Security Operations team and seeking Security Operations Engineers of all experience levels to manage and improve our Security Operations Center (SOC).

Depending on your background, you'll focus on core monitoring, alert analysis, or advanced incident response, threat hunting, and penetration testing. You'll monitor, analyze, and respond to security incidents across our infrastructure. The role includes securing internal systems through continuous operations, incident handling, and proactive security assessments.

We seek motivated individuals with IT security knowledge, capable of policy enforcement and security improvements.

What you'll be doing 

• Monitor, analyze, and escalate security alerts utilizing our SIEM & SOAR solutions (Wazuh & Chronicle).
• Conduct penetration tests and vulnerability scans against our internal platforms.
• Drive or assist in the creation of effective SIEM dashboards and improve overall monitoring and alerting capabilities.
• Manage and mitigate CVEs (Common Vulnerabilities and Exposures) on our virtualized platforms and container base images.
• Assist in implementing security measures for both internal and external systems.
• Utilize static code scanning processes to identify and remediate vulnerabilities early in the development lifecycle.
• Enforce and evolve the configuration of our Security Command Center.
• Collaborate on automated security scanning initiatives for continuous monitoring of code and infrastructure security.
• Participate in the on-call security response rotation to address critical security incidents.
• Perform recurring reviews and contribute to the review process.
• Assist with preparation and participation in security compliance audits.
• For Senior levels: Help mentor and guide Junior team members, with the possibility of growth to team lead.

Requirements

• Knowledge of or hands-on experience with SIEM solutions.
• Understanding of CVE vulnerability mitigation on VMs.
• Understanding of cloud security principles (GCP and/or AWS).
• Experience with Linux systems (RedHat/CentOS).
• Familiarity with container security concepts (Docker).
• Exposure to or experience in Pentesting.
• Proficiency in at least one scripting language (Python, Bash, or Appscript).
• Ability to use Jira for project management.
• Strong command of English (both written and spoken) with excellent communication skills.
• An assertive, knowledgeable, trustworthy, and autonomous approach to tasks.

Nice To Have

• Experience with OSSEC, Wazuh, Tenable.io, Burpsuite, Google Secops or SCCE
• Familiarity with Opsgenie or Prometheus
• Experience with patch management solutions such as Satellite
• DevSecOps knowledge
• A keen focus on real-world security issues and the ability to differentiate between buzz and practical security
• Experience in payment compliances and regulations is a plus

Soft skills 

• Excellent communication-skills to work constructive and in cooperation with internal and external teams
• Be assertive, knowledgeable and trustworthy
• High degree of responsibility and autonomy

What's in it for you

• International Collaboration: Gain invaluable experience working within a truly European and international landscape. You will learn to navigate different cultures and adapt your working style in a highly collaborative, global environment.  
• Open-Minded Culture: Join a team that values diverse perspectives and rewards those who are eager to learn from international colleagues.  
• Rewards & Flexibility: A competitive salary package with a wide range of extra-legal benefits and a flexible, tech-savvy work environment.  
• Flexible Work: Enjoy a flexible work environment that values results over rigid schedules. Off on Saturday and Sunday. Annual holiday leave will follow Vietnam law and company regulations. 
• Leave & Allowances: 25 days of annual leave, a 13th-month salary, alongside social insurance, health insurance, and unemployment insurance strictly under the Labor Law.  
• Premium Health Coverage: Generous private medical health insurance for employees & family members.  
• Team Vitality: Engaging team-building activities & outings.