In a context of strong growth and innovation, Circet Italia is looking for a SecOps Engineer who, in a hybrid, Cloud and Microsoft 365 environment, will play a key role in day-to-day security operations. The role focuses on detection, analysis and incident response, working closely with internal IT teams and a 24/7 SOC.
Key Responsibilities :
1. Monitoring and Detection
* Ensure continuous monitoring of security controls and platforms
* Detect, analyze and qualify suspicious or malicious activity.
* Maintain efficient and actionable detection with a low false positive rate.
2. Alert Analysis and Triage
* Assess and prioritize security alerts based on risk and impact.
* Qualify incidents and provide clear, actionable diagnostics.
* Escalate appropriately to the SOC or relevant IT teams.
3. Security Incident Response
* Actively contribute to security incident response.
* Support containment, mitigation and remediation actions.
* Coordinate with the 24/7 SOC and internal stakeholders.
4. Security Posture and Continuous Improvement
* Contribute to security hardening and configuration improvements.
* Improve detection rules and operational security controls.
* Leverage incident feedback to strengthen overall posture.
5. Documentation and Reporting
* Document incidents and security actions clearly.
* Contribute to concise, risk-oriented security reporting.
6. Microsoft 365 Security
* Contribute to the secure operation of Microsoft 365 environments.
* Monitor and analyze security alerts related to identity, email and collaboration usage.
* Participate in Microsoft 365 security incident response.
* Support configuration hardening and continuous control improvement.
* Contribute to awareness initiatives around identity and email-based risks.
7. Collaboration and Governance
* Work closely with Support, Infrastructure, Cloud and Digital teams.
* Interface with the 24/7 SOC and security partners.
* Participate in incident simulation exercises.
* Contribute to security procedures and runbooks.
* Operate within the group security governance framework.
8. Security Environment
* Azure Cloud and on-prem environments.
* Endpoint and workload protection (EDR/XDR).
* SIEM and detection platforms.
* Microsoft 365 security stack.
* ZTNA, Secure Web Gateway, DLP.
* Interaction with a 24/7 SOC and threat intelligence services.
Requirements:
* Master's degree in Computer Engineering
* Italian and professional fluency in English both spoken and written (liv. C2)
* Around 5 years of experience in SecOps, SOC or security operations.
* Strong understanding of Cloud, hybrid and collaborative environments.
* Solid incident detection and response mindset.
Key Skills:
* Pragmatic, outcome-driven approach.
#J-18808-Ljbffr