CSIRT Analyst

Bucharest
Security

Are you ready to take on the exciting challenge of protecting organizations against cyberthreats? Do you have a passion for Cyber Security, especially advanced Managed Detection & Response (MDR)? Does incident response, digital forensics, threat hunting, threat intelligence and everything related to Cyber Security feel like second nature to you? Are you a Cyber Defender at heart, driven to strengthen the blue team and help organizations under attack? If you answered yes to all of these questions, then you might be the perfect fit for our CSIRT Analyst role!.

  • You handle security alerts/incidents that have been escalated by the SOC Analysts (Tier 2)
  • You will handle security alerts and incidents together with your team
  • You do DFIR assignments, including DFIR readiness assessments
  • You participate in the weekly Threat Hunting duty to proactively chase threats through novel Tools, Techniques & Procedures (TTPs)
  • You will perform compromise assessments to identify potential compromises and their scope
  • You collect Threat Intelligence (IOCs and TTPs)
  • You will contribute to the Detection Engineering in SIEM, xDR, …
  • Together with the Red Team you will do Purple Teaming exercises to test and improve the defense
  • You contribute to the creation of a scenario in SOAR
  • You will co-write processes and procedures related to DFIR, Threat Intell, Threat Hunting, …
  • You will be part of our incident response on call service.

What you need to succeed:

  • You have at least 3-5 years of experience in a similar position
  • You have a bachelor or master degree or equivalent through experience
  • You have a hands-on and proactive mindset with a 'can do' mentality
  • You have experience and/or interest in working with the following MDR tools: EDR (CrowdStrike Falcon, MS Defender for Endpoint, Sentinel One, ...), NDR (Vectra, Darktrace, ...), xDR (CrowdStrike Identity Protection, MS Defender for Office/Clouds Apps/Identity/...)
  • As an analyst or engineer, you already have a good knowledge of Security Monitoring with SIEM technologies.
  • You are passionate about the following security capabilities: Security Monitoring, Digital Forensics, Incident Response, Threat Intelligence, Threat Hunting, ...
  • English skills - Advanced level

What are we offering:

  • 22 working days as Annual Vacation, 3 sick days that are not carried over the next year (no medical certificate required), plus a seniority day added every 3 years in the company;  
  • Floating days (free day for every public holiday that falls in weekend);  
  • Medical Insurance at Signal Iduna;  
  • 13th salary bonus prorated according to the number of worked months in a year;  
  • Benefit Online platform access, with a 600 RON monthly allowance from which you can choose to invest in different wellbeing, financial or retail packages;  
  • Facilitated Operational Car Leasing;  
  • Financial support for the birth of your child or unhappy events;  
  • Learning and development opportunities - allocated budget for certifications and/or trainings;  
  • Wellbeing initiatives to encourage a healthy work life balance through webinars and specialized sessions as per our colleagues’ interests
  • #InCloseCooperation – we work hard but we have fun even harder through monthly hangout parties, team buildings, and gamified experiences both online and offline. 
  • Learning and development opportunities - allocated budget for certifications and/or trainings
The entrepreneurial spirit here, gives me the drive to be a better engineer, mentor, human.

Gabriel Dragan

Senior Storage Engineer, Cegeka Romania

Aspire to more

For more than 25 years we have handled projects with drive and passion, providing IT solutions that are “tailored” to our customers. This is achievable through our teams of specialists, who are determined to define themselves everyday as the best professionals they can be within the market and leave their mark on IT projects where our impact matters. Given the right circumstances, we believe that together, we can find what enables you to learn faster, grow more and achieve more. Aspire to more.


Teams are were we live, so we always work together here. With passion, and most of all, with a lot of fun, within a culture driven by family values: respect, personal development and entrepreneurship. With a lot of freedom and responsibility. Be part of the next growth phase of a proud, successful, fast-growing, innovative, European IT company full of ambitions.

Application flow

Do you have any questions about this role?

Let's connect.