Security Specialist – Presales, Security Operations Transformation
Palo Alto Networks
Python
Job Level
JuniorMid-Level
Tech Stack
CloudGoogle Cloud Platform
About the role
- Monitor SIEM for security alerts and conduct investigations into suspicious activity within GCP environment
- Coordinate incident response across teams for rapid resolution
- Create and tune detection rules in Elastic and author incident response playbooks
- Identify and address visibility gaps and collaborate with SOC Lead
- Process threat intelligence on adversary TTPs and apply MITRE ATT&CK to enhance detection
- Help implement a new SOAR platform and shape security automation
- Collaborate with cross-functional teams and participate in Vodeno Cloud Academy and certification activities
Requirements
- 2+ years of experience working in a Security Operations Center (SOC) or a similar security role
- Hands-on experience with SIEM (security tools)
- Strong understanding of cloud security, specifically Google Cloud Platform (GCP)
- Proficient with the MITRE ATT&CK Framework
- Comfortable working with threat intelligence concepts like IoCs and TTPs
- Fluency in Polish and English
