Security Operations Engineer

3 Lý do để gia nhập công ty

• Social Work-Life Balance That Works for You
• Attractive salary & benefit, 25 days annual leave
• Premium health insurance for employee & family

Mô tả công việc

The position

Are you passionate about cybersecurity and ready to take a hands-on role in advanced security operations? We are expanding our Security Operations team and looking for Security Operations Engineers across all experience levels to play a pivotal role in operating and refining our Security Operations Center (SOC). 

Depending on your experience level, your focus will scale from core monitoring and alert analysis to advanced incident response, proactive threat hunting, and penetration testing.  You will monitor, analyze, and respond to security incidents across our infrastructure. This role goes beyond production security—it encompasses securing our internal systems and processes through continuous operations, incident handling, and proactive security assessments. We welcome driven individuals with practical and theoretical knowledge in IT security, capable of enforcing policies and continuously improving our security posture. 

What you’ll be doing 

• Monitor, analyze, and escalate security alerts utilizing our SIEM & SOAR solutions (Wazuh & Chronicle).
• Conduct penetration tests and vulnerability scans against our internal platforms.
• Drive or assist in the creation of effective SIEM dashboards and improve overall monitoring and alerting capabilities.
• Manage and mitigate CVEs (Common Vulnerabilities and Exposures) on our virtualized platforms and container base images.
• Assist in implementing security measures for both internal and external systems.
• Utilize static code scanning processes to identify and remediate vulnerabilities early in the development lifecycle.
• Enforce and evolve the configuration of our Security Command Center.
• Collaborate on automated security scanning initiatives for continuous monitoring of code and infrastructure security.
• Participate in the on-call security response rotation to address critical security incidents.
• Perform recurring reviews and contribute to the review process.
• Assist with preparation and participation in security compliance audits.
• For Senior levels: Help mentor and guide Junior team members, with the possibility of growth to team lead.

Yêu cầu công việc

Requirements

• Knowledge of or hands-on experience with SIEM solutions.
• Understanding of CVE vulnerability mitigation on VMs.
• Understanding of cloud security principles (GCP and/or AWS).
• Experience with Linux systems (RedHat/CentOS).
• Familiarity with container security concepts (Docker).
• Proficiency in at least one scripting language (Python, Bash, or Appscript).
• Ability to use Jira for project management.
• Strong command of English (both written and spoken) with excellent communication skills.
• An assertive, knowledgeable, trustworthy, and autonomous approach to tasks.

Nice To Have

• Exposure to or experience in Pentesting.
• Experience with OSSEC, Wazuh, Tenable.io, Burpsuite, Google Secops or SCCE
• Familiarity with Opsgenie or Prometheus
• Experience with patch management solutions such as Satellite
• DevSecOps knowledge
• A keen focus on real-world security issues and the ability to differentiate between buzz and practical security
• Experience in payment compliances and regulations is a plus

Soft skills 

• Excellent communication skills to work constructively and in cooperation with internal and external teams
• Be assertive, knowledgeable, and trustworthy
• High degree of responsibility and autonomy

Tại sao bạn sẽ yêu thích làm việc tại đây

What’s in it for you

• International Collaboration: Gain invaluable experience working within a truly European and international landscape. You will learn to navigate different cultures and adapt your working style in a highly collaborative, global environment.  
• Open-Minded Culture: Join a team that values diverse perspectives and rewards those who are eager to learn from international colleagues.  
• Rewards & Flexibility: A competitive salary package with a wide range of extra-legal benefits and a flexible, tech-savvy work environment.  
• Flexible Work: Enjoy a flexible work environment that values results over rigid schedules. Off on Saturday and Sunday. Annual holiday leave will follow Vietnam law and company regulations. 
• Leave & Allowances: 25 days of annual leave, a 13th-month salary, alongside social insurance, health insurance, and unemployment insurance strictly under the Labor Law.  
• Premium Health Coverage: Generous private medical health insurance for employees & family members.  
• Team Vitality: Engaging team-building activities & outings. 

About Aurify

Aurify will further strengthen our teams only with the best possible resources that share the passion for IT excellence. Therefore, we are always welcoming new talent to join our teams. Aurify's Mission is to empower businesses globally with secure, seamless, and financially efficient cloud and DevOps solutions, 24/7, while ensuring strict security compliance. Our Goal is to become a leading IT service provider, starting with a strong foundation in Belgium to drive growth beyond Europe. Our international, multicultural team of experienced IT professionals is key. We prioritize continuous learning, diverse certifications, recruiting top talent, and eagerly adopting new technologies that bring value to our customers. Aurify strengthens its teams only with resources who share a passion for IT excellence, and we always welcome new talent.

About our client

Our client helps organizations digitize and streamline business processes (order-to-cash, procure-to-pay) through a cloud-based open network connecting consumers and organizations globally. This network facilitates collaboration, digital interactions, document exchange, payments, and cash flow optimization, offering various tools from mobile apps to APIs. As the company is becoming more regulated, all roles require a background check, which may include identity, degree, criminal record, and employment history verification.