Job Details

Monitoring and Response Engineer at T-Bank. Remote work. Salary from 350,000 ₽. Design and implement security incident monitoring and response processes in cloud environments.

• Design and implement security incident monitoring and response processes in cloud environments (AWS, GKE/Kubernetes). • Detect, analyze, and manage incidents: triage, investigation, conclusion and recommendation formulation, MTTR reduction. • Develop and improve detection content: correlation rules, alerts, signatures/behavioral scenarios, evaluate effectiveness (precision/recall, noise, coverage). • Formulate hypotheses based on current attacker techniques (TTPs) in the context of cloud-native and K8s infrastructure. • Identify blind spots with Red Team and Threat Hunting, conduct root cause analysis of incidents. • Improve security processes through Post Incident Activity.

• You have experience in building monitoring and response processes. • You have an excellent understanding of operating systems, networks, and modern technologies: Kubernetes, cloud platforms. • You understand cloud-native logging architecture and observability tools. • You have a deep understanding of attacker techniques and experience with offensive tools. • You have experience developing detection rules. • You are proficient in Python and one scripting language: Bash, PowerShell, or another. • You can formulate quality hypotheses and evaluate monitoring quality. • You have English language proficiency at B1-B2 level.