ABOUT THE PROJECT

We are seeking a highly skilled and experienced Incident Response (IR) / IDFR Specialist to join our security team. This role is critical and requires deep hands-on expertise in incident response, detection, and forensics, with a strong emphasis on Elastic EDR.

REQUIREMENTS

– Relevant security certifications (e.g., GCIH, GCFA, GCED, GCIA, CISSP, or similar)
– Experience with threat hunting and detection engineering
– Familiarity with MITRE ATT&CK framework
– Experience working in enterprise or large-scale environments
– Nice to Have: Experience with additional EDR/XDR platforms
– Cloud security investigation experience
– Scripting or automation skills (Python, Bash, etc.)

RESPONSIBILITIES

– Lead and execute incident response activities, including detection, analysis, containment, eradication, and recovery
– Perform advanced digital forensics and root cause analysis across endpoints and environments
– Act as a subject-matter expert for Elastic EDR, including investigation, tuning, and optimization
– Analyze security alerts, logs, and telemetry to identify malicious activity
– Develop and improve detection logic, response playbooks, and investigation workflows
– Support IDFR operations, including threat hunting and proactive investigations
– Collaborate with SOC, security engineering, and IT teams during incidents
– Produce clear incident reports, timelines, and post-incident recommendations
– Participate in on-call or high-severity incident handling as required

WHAT WE OFFER

– People-oriented management without bureaucracy
– The friendly climate inside the company is confirmed by the frequent comeback of previous employees
– Flexible working schedule
– Free English classes with native speakers
– Dedicated HR

COMPENSATION & BENEFITS

–