Join us – we keep the digital society running!
Experienced system administrator transitioning to cyber security
Are you a systems administrator who is interested in moving your career to an another direction? Do you know the ins and outs of corporate Windows environments? Our Managed Security Services is looking for a new DFIR specialist.
Your experience will help you understand network- and host-based anomalies and weak configurations in our client's networks. You can pull a bunch of log files and build a coherent story of what happened, where and how.
You do not need to be a forensic expert, but if you are, that's great! What we are looking for is a person who has a solid understanding of how corporate networks are supposed to work, and help our customers understand, recover and rebuild after an attack.
The Nixu Digital Forensics and Incident Response team will assist you in your journey towards becoming a true security specialist. A solid foundation in systems administration is a great starting point to build a robust understanding on how to detect, react and mitigate modern cyberattacks.
You will be a part of our incident response and forensics team and your main focus will be security incident handling, forensics, threat hunting and related security specialist tasks. Your duties include handling security incident response cases, participating in Threat Hunting assignments, developing incident response processes and to being part of our SOC Tier 3 team including our Tier 3 on-call ring.
The position is permanent and full-time. You will be based in Espoo or Turku, Finland. Nixu has very flexible remote working opportunities, and currently all work is done remotely due to the COVID-19 situation. Nixu's clients require a high degree of confidentiality from our workforce, so all applicants must pass a security background check. Passing the check requires the applicant to be a Finnish citizen or an extended period of living and working in Finland.
What do we expect from you?
We expect that you have solid background and experience in systems administration, corporate IT policy and working either with or in a security role for at least a year. You should have at least 5 years of experience deploying and troubleshooting Windows Server and Workstation environments and a solid knowledge how a Microsoft Active Directory environment works. Background in incident handling, forensics, log analysis or other relevant expertise is considered an advantage.
We expect you to be able to take responsibility of incident investigations and be responsible for their implementation and delivery. You will be supported by a team of highly skilled experts, so we do not expect you to know everything
From the technology perspective you should be very familiar with operating systems, networks and endpoints. You understand enterprise architecture and you know how to run one in a secure manner. You have a strong ability to write technical reports in English in an understandable form.
We do not expect you to master everything, but at least half of the following topics should be familiar:
- operating systems (Windows / Linux, Mac OS is plus)
- security incident response
- EDR tools (Carbon Black, CrowdStrike, MS Security Stack)
- security information and event management
- modern cyber defense solutions
- file systems
- network protocols
- routers, firewalls, IDS/IPS
- scripting (powershell / python)
- project management
- familiarity with cybersecurity processes
Computer forensics expertise, penetration testing experience, academic studies, and security related certifications (like: GCFA, GCFE, GCIA, GCIH, CISSP, GREM, OSCP) are a strong plus. Strong ethics, fluent written and spoken English as well as ability to efficiently work as a part of technical security team and possibility to occasionally work outside of office hours is a must. Willingness to travel is highly appreciated but not a must.
Our values – professionalism, collaboration, humanity and passion for cybersecurity – guide our work every day, everywhere.
We aim to be the best workplace for cybersecurity professionals. Nixu has a modern company culture that empowers our employees. We provide our people all the means, tools, and support so they can develop their professional skills. By joining Nixu you will get to be part of Nixu cybersecurity community where you will find helpful colleagues with a great team spirit.
We embrace diversity and appreciate that Nixuans have – and need to have – a life outside the workplace. And we want our people to have fun at work!
We are waiting for your application! Please create your profile in our recruitment system and tell us why you would be a good match with us.
If you have further questions, please contact Antti Kurittu at firstname.lastname@example.org