SOC Analyst (Security Engineering team)

Mediatech As one of the fastest-growing digital publishing houses in the world, Mediatech combines digital, tech, and content competencies to simplify complex information and make it accessible to everyone.

Since launching Cybernews in 2019, expanding into Wellnesspulse, and creating a financial insights platform Investorsobserver, we have grown to a team of 300 in-house experts and over 200 global contributors.

Security Engineering team Our Security Engineering team brings practical security know-how and curiosity to every problem.

We build detection, guard our data and websites, and work closely with developers to make systems safer—always learning, always improving.

You You’re a hands-on SOC analyst who likes digging into alerts and getting them right.

You enjoy working with Wazuh, tuning detection rules, and turning noisy signals into reliable security coverage.

Practical, detail-obsessed, and comfortable explaining technical findings to engineers and product teams—you take pride in keeping monitoring sharp and meaningful.

WHAT WILL YOU DO

Own alert triage and tuning in Wazuh: review alerts, reduce false positives, and improve detection quality (golden rules and rule authoring)

Analyse alerts tied to website, tracking, and data pipelines—spot gaps, confirm incidents, and recommend fixes

Create and maintain detection logic (rules, decoders, thresholds) and supporting documentation

Operate Wazuh manager/agents and work with log sources to ensure reliable telemetry

Build and maintain dashboards/reports to track alert health and detection coverage

Collaborate with developers, product and infra teams to validate detections and close the loop on remediation

Help automate routine investigation steps and alert enrichment with simple scripts or playbooks

Contribute to incident investigations when escalated, providing clear findings and suggested next steps

WE EXPECT YOU TO HAVE

2+ years of experience in SOC/SECOPS, security monitoring or a similar role

Practical experience with Wazuh (rule writing, alert tuning, agents)

Familiarity with web technologies and tracking (HTTP, JavaScript trackers, analytics logs) and how they appear in logs

Comfortable reading and shaping logs (regex, log parsing) and using Kibana/Elasticsearch or similar for investigation

Basic scripting skills (Python, Bash, or similar) to automate checks and enrich alerts

Strong attention to detail and a methodical approach to triage and investigation

Clear communicator who can present findings and recommended actions to engineers and non-security stakeholders

A proactive attitude and willingness to learn new tools and detection techniques

Nice to have

Experience with threat hunting, MITRE ATT&CK mapping, or developing detection playbooks

Exposure to cloud logging / SIEM ecosystems and integration work

Tetragon and/or Cilium experience

AT MEDIATECH YOU WILL GET

Paid sick days and private health insurance that includes dental, vision, health checks, and 80% coverage for 25 psychotherapy sessions

Access to premium mental health apps, onsite workouts, and gym membership support — all available during parental leave too

Learning budget for courses, conferences, and books — your growth is always backed

Extra days off, thoughtful gifts, and bonuses to celebrate life’s milestones like birthdays, weddings, and new arrivals

Pet-friendly, centrally located office with game zones, healthy snacks, and cozy spaces to unwind

Fun company events, fitness challenges, and team-building activities that actually connect people

Additional vacation days the longer you stay — because recharging is essential

GROSS SALARY

2700 - 3950 EUR/month. Keep in mind that we are open to discuss a different salary based on your skills and competences.

Full Time