- Hands-on experience with implementing cybersecurity solutions increasing cybersecurity in organizations
- Experience and up-to-date knowledge of current cybersecurity threats (incl. APT, customized malware)
- Hands-on experience regarding cybersecurity prevention toolset (IPS/IDS, honeypots, SIEM, firewall, web firewall, mail filtering, malware analysis)
- Practical experience regarding security of network technologies (especially LAN / WLAN / network protocols)
- Experience with security LAN, WLAN, Ethernet/UDP/TCP/IP protocols, PKI infrastructure, encryption methods and secure implementation of Cloud infrastructure
- Practical experience within configuration and verification IDS/IPS system, especially effectively connecting them to SIEM systems
- Practical experience with Linux administration and usage of automation tools (eg. Jenkins, Ansible, Chief, Puppet, etc.)
- Some practical experience with virtualization (eg. ESXi, KVM)
- Some experience within penetration testing (esp. Blackbox and/or Whitebox testing)
- CCNA Security, CISSP, CISA, or CISM
- Pre-emptive anomaly detection
- Analyzing of latest cybersecurity issues
- Supporting for analysis of complex SIEM cases (CSOC Level 2, CSOC Level 3)
- Forensics analysis when needed
- Implementing security countermeasures
- Creating new SIEM use cases with needed documentation
- Cooperation with external Threat Intelligence vendors (like Computer Emergency
- Response Teams (CERT), Information Sharing and Analysis Centers (ICAC)