About the Job

At Excelya, we don't just work—we Excelyate. Across 24 countries, 900+ passionate professionals are shaping the future of healthcare with one bold ambition: to become Europe's leading mid-size CRO, offering the best employee experience.

As a Technical Support & Security Specialist, you will provide frontline support to our users while contributing to the monitoring and protection of our global IT environment. You will ensure that employees have reliable, secure, and well‑functioning IT systems, and you will actively participate in detecting, investigating, and responding to security incidents.

Responsabilities:

Gritter Francona is looking for a Cyber Threat Hunt Lead to support a potential project with the Department of Homeland Security. The Threat Hunt Lead will build and guide a proactive threat hunting capability for the Department of U.S. Customs and Border Protection (CBP). The Threat Hunt Lead will direct a specialized team in proactively searching for malicious activity across CBP networks that evades traditional security solutions. This role requires an offensive mindset, deep knowledge of attacker TTPs, and expert-level skills with SIEM and endpoint management tools. The Threat Hunt Lead will be responsible for developing hunt hypotheses, executing hunt missions, and coordinating with the SOC to create new detections based on your findings.

Key Responsibilities:

• Lead the CTH team to proactively and iteratively conduct threat hunting efforts against CBP networks, systems, and high value assets to detect and isolate advanced threats.

• Utilize threat models and Cyber Threat Intelligence to formulate hypotheses about attacker activity on CBP networks and systems to investigate during formal hunt missions.

• Propose corrective actions and inform necessary parties of security issues, reportable offenses, or cybersecurity best practices.

• Work with the CBP SOC to create new security content, including signatures and detection alerts, resulting from hunt missions and Purple Team engagements.

Gritter Francona is looking for a Cyber Defense Forensics Lead to support a potential project with the Department of Homeland Security. The Forensics Lead will manage and direct the forensics and insider threat operations supporting U.S. Customs and Border Protection (CBP). The Lead will direct a team of expert analysts responsible for conducting digital forensic investigations, monitoring for data loss, and analyzing insider threat activities. The role requires deep technical expertise in forensic tools and methodologies, a solid understanding of incident response, and the ability to lead complex investigations from start to finish.

Key responsibilities include:

Хто ми?

SupportYourApp — міжнародна Support-as-a-Service компанія, що надає послуги аутсорсингу бізнес-процесів для інших ІТ-компаній по всьому світу (технічна та користувацька підтримка, сервіси для покращення досвіду користувачів) вже протягом 15 років. Наразі в нашій міжнародній команді 1300+ фахівців.

Ми надаємо послуги по всьому світу, підтримуючи клієнтів 60-ма мовами, співпрацюємо з такими лідерами як MasterCard, Calm та MacPaw, маємо міжнародні хаби, а також розробляємо такі інноваційні продукти, як Quidget  — щоб робити клієнтський досвід кращим кожного дня.

Про позицію:

Наша команда постійно зростає, а разом із цим зростає кількість викликів у сфері інформаційної безпеки. Щоб забезпечувати надійний захист наших сервісів, ми шукаємо Junior Security Operations Specialist, який приєднається до Security команди та допоможе у моніторингу інцидентів.

Звучить цікаво? Далі більше 💛

З нами ти зможеш займатися:

We are looking for a Senior DevSecOps who will help make our cloud infrastructure safe, stable, and automated. You will work together with the development, platform, and security teams to add security at every step of product creation.

This is a great chance to grow in security automation, improve processes, and bring modern DevSecOps practices into the company.

Requirements

Must-Have Skill

We are seeking a highly experienced IT Professional to support and enhance our mission-critical systems with a focus on financial (systems) and cybersecurity infrastructure. This role is pivotal in maintaining system integrity, ensuring compliance with financial regulations, and defending against evolving cyber threats. 

Systems engineering 

• Provide tier 3 support for complex infrastructure and application issues. 

• Design, implement, and maintain high-availability systems for financial platforms. 

• Perform system performance tuning, capacity planning, and disaster recovery testing. 

• Automate operational tasks using PowerShell, Python, or other scripting tools. 

Financial systems support 

• Manage and support financial applications such as ERP systems and reporting tools. 

• Ensure systems meet security standards. 

• Collaborate with finance and audit teams to support secure data flows and reporting. 

Cybersecurity operations 

·         Lead and manage the end-to-end functioning of the SOC team, ensuring 24x7 coverage.

·         Oversee daily operations, incident response quality, and compliance with SLAs.Work closely with the SOC Manager to prepare periodic threat reports, executive dashboards, and compliance status updates.

·         Develop and maintain SOC playbooks, SOPs, and reporting dashboards.

·         Conduct regular review meetings, threat landscape briefings, and knowledge sharing sessions.

·         Act as point of contact for critical escalations, audits, and client reporting.

·         Coordinate with OEMs, security architects, and client IT teams for policy updates and improvements.

·         Train and mentor L1 and L2 SOC Analysts to build internal capabilities.

·         Ensure policies for endpoints, DLP, firewall rules, and SOAR playbooks are appropriately enabled and updated as per approved change management.

·        Assist in root cause analysis (RCA) for incidents and recommend corrective actions.

·         Document incidents, resolutions, and playbook adjustments for knowledge base updates.

Qualification & Skills:

·         Bachelor’s degree in Computer Science, IT, or related field (Master’s preferred).

·         7–10 years of experience in SOC operations, including at least 2–3 years in a lead/managerial role.

·         Handle advanced incident investigation, correlation, and in-depth threat analysis.

·         Validate and respond to escalations from L1 Analysts.

·         Perform threat hunting, malware analysis, and root cause analysis as needed.

·         Implement and tune detection use cases and SIEM rules/playbooks.

·         Coordinate with OEM L3 Support for complex incident resolution.

·         Support dashboard reporting, policy compliance, and continuous improvement.

Qualification & Skills:

·         Bachelor’s degree in IT, Computer Science, or Cyber Security.

·         2–4 years of experience in SOC operations, threat detection, and incident response.

·         Good working knowledge of EDR, SIEM, SOAR, DLP, and network security tools.

·         Relevant certifications preferred:EC-Council CEH, CompTIA CySA+, EC-Council CHFI, Cisco CyberOps Professional, or equivalent.

·         Strong analytical, problem-solving, and communication skills.

·        Perform continuous monitoring of security events and alerts from EDR, SIEM, SOAR, DLP, NDR, and other security solutions.

·        Conduct initial triage and categorization of incidents as per defined playbooks.

·        Escalate confirmed incidents to L2 SOC Analysts with proper documentation.

·        Generate daily incident and alert reports for review.

·        Ensure timely closure of false positives and routine alerts.

·        Follow standard operating procedures (SOPs) for all security monitoring tasks.

Qualification & Skills:

·        Graduate in IT, Computer Science, or related field.

·        Basic understanding of security concepts, log analysis, and network fundamentals.

·        Familiarity with EDR, SIEM, or SOC workflows is preferred.

·        Carry out on-site installation, configuration, and testing of XDR, SIEM, DLP, SOAR components as per deployment plans.

·        Perform initial troubleshooting of deployment and integration issues; resolve wherever possible or escalate to L2/L3 teams.

·        Coordinate with the client’s IT, network, and security teams for necessary access, log configurations, and policy enablement.

·        Ensure proper ingestion of logs, agent installations, network traffic configurations, and data flow for solution effectiveness.

·        Maintain detailed deployment and issue logs, prepare installation reports, and update project status to the project manager.

·        Conduct basic training for client IT/security staff on solution operation and basic troubleshooting.

·        Support acceptance testing and handover documentation.

·        Follow change management and security best practices during deployment.

Required Qualifications and Experience: 

·        Diploma/Bachelor’s Degree in Computer Science, IT, Electronics, or related field.

·        1–5 years of hands-on experience in deploying or supporting cybersecurity solutions (XDR/EDR, SIEM, DLP, SOAR) or enterprise network security solutions.

·        Sound knowledge of networking concepts (routing, switching, firewalls, proxy, VPN).

·        Working knowledge of operating systems (Windows/Linux) and endpoint security tools.