In a context of strong growth and innovation, Circet Italia is looking for a SecOps Engineer who, in a hybrid, Cloud and Microsoft 365 environment, will play a key role in day-to-day security operations. The role focuses on detection, analysis and incident response, working closely with internal IT teams and a 24/7 SOC.
Key Responsibilities :
1. Monitoring and Detection
Ensure continuous monitoring of security controls and platforms
Detect, analyze and qualify suspicious or malicious activity.
Maintain efficient and actionable detection with a low false positive rate.
2. Alert Analysis and Triage
Assess and prioritize security alerts based on risk and impact.
Qualify incidents and provide clear, actionable diagnostics.
Escalate appropriately to the SOC or relevant IT teams.
3. Security Incident Response
Actively contribute to security incident response.
Support containment, mitigation and remediation actions.
Coordinate with the 24/7 SOC and internal stakeholders.
4. Security Posture and Continuous Improvement
Contribute to security hardening and configuration improvements.
Improve detection rules and operational security controls.
Leverage incident feedback to strengthen overall posture.
5. Documentation and Reporting
Document incidents and security actions clearly.
Contribute to concise, risk-oriented security reporting.
6. Microsoft 365 Security
Contribute to the secure operation of Microsoft 365 environments.
Monitor and analyze security alerts related to identity, email and collaboration usage.
Participate in Microsoft 365 security incident response.
Support configuration hardening and continuous control improvement.
Contribute to awareness initiatives around identity and email-based risks.
7. Collaboration and Governance
Work closely with Support, Infrastructure, Cloud and Digital teams.
Interface with the 24/7 SOC and security partners.
Participate in incident simulation exercises.
Contribute to security procedures and runbooks.
Operate within the group security governance framework.
8. Security Environment
Azure Cloud and on-prem environments.
Endpoint and workload protection (EDR/XDR).
SIEM and detection platforms.
Microsoft 365 security stack.
ZTNA, Secure Web Gateway, DLP.
Interaction with a 24/7 SOC and threat intelligence services.
Requirements:
Master's degree in Computer Engineering
Italian and professional fluency in English both spoken and written (liv. C2)
Around 5 years of experience in SecOps, SOC or security operations.
Strong understanding of Cloud, hybrid and collaborative environments.
Solid incident detection and response mindset.
Key Skills:
Pragmatic, outcome-driven approach.
#J-18808-Ljbffr