Incident Response Engineer

KALYON YATIRIM HOLDİNG A.Ş.

Kalyon Holding operates in many different sectors such as construction, energy, real estate, aviation and education.

Our group continues to grow rapidly and with many successes today.

We are looking for a “Incident Response Engineer ” to be assigned in OnBT Bilişim Teknoloji A.Ş., one of our group companies.

General Qualifications:

• Graduated from 4-year universities' related departments,
• At least 5 years of experience in SOC or related position,
• Able to analyze and report cases,
• Experienced in Threat Hunting, incident response handling,
• Ability to analyze RAM and disk images (Volatility, Autopsy, FTK, EnCase),
• Experienced in security tools such as SIEM (Splunk, QRadar, ELK etc.), SOAR, EDR, XDR (CrowdStrike, SentinelOne etc.),
• Sigma specializes in one of the query languages such as Snort, Yara and Suricata,
• MITRE has mastered the ATT&CK® framework,
• GCIH, GCFA, ECIH and similar certificates,
• Good command of English,
• Residing or will be able to reside in Istanbul.

Key Responsibilities:

• To realize fast and effective response against cyber attacks,
• Performing threat analysis over IoC and IoA,
• Implement the processes of Containment, Correction and Remediation,
• Conducting threat hunting at regular intervals,
• Preparing Post Incident Activity report after the incident,
• In-depth research and analysis,
• Analyzing events escalated by L1-L2,
• Providing proactive security of the structure against possible threats.