Security Analyst

CETIN Bulgaria delivers high-quality telecommunications infrastructure services in Bulgaria, ensuring reliable connectivity with a commitment to excellence We provide an enjoyable customer journey and great performance by pushing sustainable technological development and anticipating customers' demands, based on our cutting-edge communications infrastructure, highly skilled team of more than 300 professionals, and our customer-driven strategy.

CETIN Bulgaria is a member of CETIN International - a leading wholesale provider of active and passive telecommunications infrastructure services in Central and Eastern Europe.

We work with highly skilled, highly motivated, world-class experts.

Join CETIN and be part of this team!

Role Overview:

Navigate the information security monitoring systems and networks and actively participate in the full cycle of monitoring, identification, investigating, handling and resolving security incidents/breaches

Your main responsibilities would be to:

• Continuously monitor and analyze security events across the IT infrastructure using SIEM, SOAR, DLP, IDS/IPS, EDR/XDR, and network security tools
• Detect, investigate, and respond to cybersecurity incidents and security breaches in a timely and structured manner
• Perform incident triage and event correlation, assess severity levels, and evaluate potential business impact and risk exposure
• Lead or support incident response and remediation activities, including coordination with internal teams and external stakeholders
• Utilize SOAR platforms to automate incident handling, enrichment, and response workflows
• Conduct log analysis and threat hunting across multiple data sources, including network, endpoint, application, and cloud environments
• Participate in secure evidence collection and forensic analysis while ensuring chain-of-custody procedures and compliance with internal policies
• Collaborate with cyber threat intelligence and threat analysis teams
• Actively contribute to the continuous improvement of security monitoring, threat detection, and threat prevention processes
• Contribute across multiple security domains and collaborate within an international work environment
• Support security operations activities such as vulnerability management, access monitoring, and security compliance 

What we would expect from you:

• Relevant bachelor’s or master’s degree and/or equivalent professional experience in Information Security, Computer Science, or a related field
• Proven experience working in a Security Operations Center (SOC) or a similar cybersecurity role
• Hands-on experience with SIEM platforms such as ArcSight, Splunk, QRadar, FortiSIEM, or similar technologies
• Working knowledge of SOAR platforms, DLP solutions, IDS/IPS technologies, firewalls, and endpoint security tools (EDR/XDR)
• Basic understanding of threat intelligence, the MITRE ATT&CK framework, and common attack vectors
• Good understanding of network protocols, system architecture, and security controls
• Experience in IT domains such as system administration, operations, or software development is considered an advantage
• Relevant certifications such as Security+, CEH, CySA+, GCIH, or similar certifications are considered an advantage
• Strong ethical standards and ability to handle confidential information
• Strong analytical and problem-solving mindset
• Fluency in English, both written and spoken
• Ability to understand the broader security landscape, evaluate risks, and support decision-making
• Ability to quickly learn and apply new methodologies, technologies, and solutions

Our offer:

• Working opportunity in a collaborative team
• Positive workplace culture where you would receive all the support you need from your peers and managers in order to achieve your personal and team goals
• Annual bonus based on your personal performance
• Preferential prices for mobile devices and accessories
• Unlimited mobile services and mobile internet
• Flexible working hours
• Monthly food and gift vouchers
• Transportation allowance
• Additional health insurance
• Possibility for remote work
• 25 days annual paid leave

Only short-listed candidates will be contacted. All applications will be treated in strict confidentiality and in compliance with applicable law regarding personal data protection.