We, at Enterprise IT Security, are on a mission to secure the IT journey for the Volvo Group. We work closely together with stakeholders across several Business Areas (BAs), Truck Divisions (TDs), and Group Functions (GFs). While the BAs are responsible for driving the business, the TDs provide research, development, purchasing, manufacturing, and assembly. Within Volvo Group, the GFs own the Group agenda, provide strategic direction, and have global responsibility in group-wide functions such as IT, legal, compliance and security.
With Enterprise IT Security, you will be part of Group Digital & IT (Group Function). A global and diverse team of highly skilled professionals who work with passion, trust each other, and embrace change to stay ahead. Enterprise IT Security (EITS) works in close collaboration with both Group Security function and security functions within TD’s, BAs and GFs. Together we work to build a security posture that is best in class.
Volvo Group SOC defends the organization from cyber-attacks. Working in the SOC is focused around detecting and responding to cyber security incidents. SOC Analysts are technical cyber security experts who, together as a team, investigate suspicious events detected by cyber security monitoring tools. The investigations determine whether a detection is “true positive,” a truly malicious event that should be escalated into a cyber security incident. Furthermore, a SOC Analyst should continuously develop oneself to keep up with the ever-changing cyber threat landscape.
- Work as part of the Team and support your colleagues.
- Handle the most severe cyber security incidents.
- Support L1 SOC analysts in demanding investigations
- Training of less experienced team members
- Threat hunting
- Validation and development of SOC monitoring rules
- Conducting digital forensic investigations as part of incident response
- Develop incident response processes and playbooks
- Proactively finding ways to reduce risk of a successful breach
- Document work and report on incidents
- Training of less experienced team members
- Conduct threat hunting
- Participate in project based cyber security development work as a subject matter expert.
- Continue to develop your skills with the support of Volvo Group.
- A good team player and a nice person.
- Minimum 5 years of work experience with technical cyber security.
- The capacity to lead incident response activities and handle severe cyber security incidents.
- Good technical and practical digital forensics and incident response capabilities.
- Ambitious about building your professional career within the cyber security domain.
- You like to work in a team and can drive things to completion.
ITIL skills: Incident management, problem management, assessment and audit
IT security skills: Application and IT infra knowledge, continuous monitoring (investigate alerts, data breaches, identiy vulnerabilities etc)
The basic skills in :
- Programming / script ability (any of javascript, C++, python, etc)
- Knowledge of network & security – NW protocols, Firewall, server environment configurations/maintenance, attack vector methodologies
- Knowledge of security fundamentals – identify, detect and mitigate threats
- Incident handling and documentation
- Ethical hacking
Tools : SIEM tools (Kibana, Graffana, Splunk, XSOAR, IBM resilient)
