remote

SOC Engineer

SOC Engineer responsible for developing monitoring, detection, and incident response processes for information security, with expertise in SIEM, threat detection, and modern attack methods.

About the role

Role Overview

We are looking for a specialist to strengthen the Security Operations team and be responsible for developing monitoring, detection, and incident response processes for information security.

What You Will Do

Analyze, classify, and investigate security alerts, incidents, and suspicious activity, develop and optimize correlation rules, threat detection scenarios, dashboards, alerts, and reports in SIEM, and participate in PoC/Pilot SIEM solutions.

Why It Might Be a Fit

3+ years of experience in cybersecurity / SOC / Incident Response / Security Operations or related roles, practical experience with SIEM, and knowledge of modern attack methods and the MITRE ATT&CK framework.

Requirements

Higher technical education or specialized courses in information security
3+ years of experience in cybersecurity / SOC / Incident Response / Security Operations or related roles
Practical experience with SIEM: Microsoft Sentinel, Splunk, QRadar, ArcSight, Wazuh, Elastic, Logsign, or analogs
Experience in setting up correlation rules, notifications, and dashboards
Understanding of network protocols, Windows/Linux, Active Directory / Entra ID, cloud, and on-prem infrastructure
Knowledge of modern attack methods and the MITRE ATT&CK framework
Ability to document investigations, incidents, and recommendations qualitatively

Benefits

Office or remote work
Remote onboarding
Performance bonuses
Health and life insurance
Wellbeing program and corporate psychologist
Compensation for mobile communication expenses with Kyivstar

Originally posted on Himalayas

Skills

siempythonmachine learningaws

CompanyKyivstar

DepartmentEngineering

LocationUkraine

Experience3+ years

Tenurefull-time

LevelMid-Level

Posted June 6, 2026