Are you looking for an exciting role where you can use your expertise in information security to make a difference? Consider joining our team as a Lead Information Security Engineer in our Global Security Operations Center!

You'll have the possibility to play a crucial role in protecting Nasdaq against cyber-attacks and ensuring the security of our systems and data. Our GSOC team is responsible for round-the-clock monitoring of Nasdaq and you as a CSIRT (Cyber Security Incident Response Team) Engineer are dedicated to investigating any security incidents with diligence and attention to detail. Join us in this exciting and rewarding position and help safeguard our organization against cyber threats.

What You Will Get:
You can expect an autonomous but fast-paced work environment where you are recognized for your results and ability to drive things forward. Every day brings many opportunities to learn & grow and rewards with the global impact we create.

• Monthly base salary starting from 4600 EUR gross based on your experience
• Annual monetary bonus
• An opportunity to become a Nasdaq shareholder
• Employee Stock Purchase Program Nasdaq stocks with a discount
• III pillar pension plan with additional contribution from Nasdaq
• Flexible health Insurance program
• Flexible working schedule and hybrid way of work
• Additional paid leave days after 2 years of working at Nasdaq
• Flex day program (up to 6 days a year)
• Opportunities to grow horizontally or vertically in the company
• Internal mentorship program get a mentor or become one
• Wide selection of online learning resources, e.g Udemy, OReilly

What You Will Do:
As a valuable member of our team of skilled GSOC Analysts and CSIRT, you will have the opportunity to thrive in a dynamic and stimulating work environment. You will perform a range of tasks:

• Provide timely detection, identification, and alerts of possible attacks/intrusions, and distinguish these incidents and events from benign activities
• Set up and tune monitoring involving multiple security monitoring products and data feeds
• Apply the Nasdaq Incident Response Plan to guide security investigations
• Create and test new alerting opportunities based on analytical methods like anomaly detection or detecting malicious techniques
• Mentor and train others by sharing your knowledge and experiences
• Recommend improvements both technical and non-technical to enhance the effectiveness of our GSOC
• Develop and execute security controls, defenses, and countermeasures to intercept and prevent internal or external attacks or attempts to infiltrate company email, data, e-commerce, and web-based systems
• Respond to cybersecurity breaches, identify intrusions, and isolate, block, and remove unauthorized access
• Provide information to management regarding the impact on the business caused by theft, destruction, alteration, or denial of access to information and systems

Who We Are Looking For:

• Experience with Splunk or other SIEM platforms
• Ability to apply the MITRE ATT&CK and Killchain frameworks to security operations
• Ability to multitask, prioritize, and take charge during complex situations
• In-depth analysis of malware or other potential malicious processes or software identified in the organization
• Proficiency in Security Orchestration, Automation, and Response (SOAR) platforms, such as Cortex XSOAR(Demisto), Splunk Phantom
• Familiarity with scripting languages (ex. Python) to automate tasks and develop custom tools
• Technical expertise and depth in two or more of the following areas: Digital Forensics, detection creation, threat hunting, and cloud administration
• Excellent verbal, written, and interpersonal communication skills

Nice To Have:

• Have experience with cloud environments (e.g., AWS, Azure, GCP)
• It will be excellent if you have technical certifications: GIAC Certified Incident Handler (GCIH), GIAC Reverse-Engineering Malware (GREM), GIAC Certified Forensic Analyst (GCFA), etc.

It's a full-time permanent position located in Vilnius. As the selection and interview process is ongoing, please submit your application in English as soon as possible.
A valid working permit for the EU is required.

Come as You Are

Nasdaq is an equal opportunity employer. We positively encourage applications from suitably qualified and eligible candidates regardless of age, color, disability, national origin, ancestry, race, religion, gender, sexual orientation, gender identity and/or expression, veteran status, genetic information, or any other status protected by applicable law.

We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request an accommodation.