Cyber Security Specialist at Aqilea formerly Soltia

Stockholm, Stockholm, Sweden -

Full Time

Start Date

Immediate

Expiry Date

28 Dec, 25

Salary

0.0

Posted On

29 Sep, 25

Experience

5 year(s) or above

Remote Job

Yes

Telecommute

Yes

Sponsor Visa

Skills

Cybersecurity, SIEM, Incident Response, Threat Detection, Cloud Security, Agile Methodologies, Zero Trust, Windows, Linux, PowerShell, Scripting, CrowdStrike, Splunk, Cribl, Azure, Cylance

Industry

IT Services and IT Consulting

Description

Company Description Company Description We are a consulting company with a bunch of technology-interested and happy people! We love technology, we love design and we love quality. Our diversity makes us unique and creates an inclusive and welcoming workplace where each individual is highly valued. With us, each individual is her/himself and respects others for who they are and we believe that when a fantastic mix of people gather and share their knowledge, experiences and ideas, we can help our customers on a completely different level. We are looking for you who want to grow with us! Job Description We are seeking a highly skilled Cyber Security Specialist to join our team. In this role, you will help develop and operate within our CyberSOC team, addressing cybersecurity risks in a fast-paced enterprise environment. You will work extensively with our SIEM platform—onboarding datasets, building automation, and managing security incidents from identification to resolution. This is an opportunity to take ownership of a critical platform, collaborate with a skilled team, and make a tangible impact on the organization’s security posture. Key Responsibilities: Manage and operate our SIEM platform to efficiently address incidents. Investigate and respond to cybersecurity incidents across infrastructure, networks, operating systems, and cloud environments. Translate internal and external threats into actionable risks and ensure timely resolution. Collaborate with development teams to ensure operational excellence through necessary integrations. Provide clear and concise reporting to highlight trends and close security gaps. Ensure compliance with business and regulatory requirements. Who You Are: A proactive team player with a customer-focused mindset and strong relationship-building skills. Analytical and detail-oriented, with the ability to prioritize risks and drive resolution. Comfortable taking ownership of a platform while collaborating across a distributed team. A self-starter who thrives in a fast-paced, enterprise-scale environment. Qualifications Required Skills and Experience: Minimum 5 years of experience in cybersecurity, with hands-on expertise in Cyber Threat Management. Proven experience operating and managing a SIEM platform (e.g., onboarding, automation, incident response). Broad technical knowledge across infrastructure, networks, operating systems, and cloud. Experience with incident response, threat detection controls, and risk-based security approaches. Familiarity with Agile methodologies and working with development teams. Knowledge of Zero Trust principles is a plus. Key Competences: SIEM Tools: CrowdStrike, Cribl Edge & Stream, Splunk Core, Splunk Enterprise Security Endpoint Tools: CrowdStrike, Palo Alto Cortex XDR, Cylance Protect Cloud Security: Azure Sentinel Security Architecture & Design for SIEM environments Mandatory Skills (preferably 3): Security Tools: CrowdStrike, Cribl, Splunk, Cylance, Palo Alto XDR, etc. Platforms: Windows, Linux Cloud: Azure Desired Skills (preferably 2): Programming/Scripting: SPL, XQL, PowerShell, JSON Certifications (Examples): CrowdStrike Certified Falcon Administrator (CCFA) CrowdStrike Certified Falcon Responder (CCFR) CrowdStrike Certified Falcon Hunter (CCFH) CrowdStrike Certified SIEM Engineer (CCSE) CrowdStrike Certified Identity Specialist (CCIS) Cribl Certified Admin – Stream Cribl Certified Admin – Edge Microsoft AZ-900, MS-900 Additional Information Utilization: 100% Start date: ASAP Location: Full-time/Contract, hybrid in Malmö/Lund/Helsingborg (no relocation) Form of employment: Full-time until further notice, we apply 6 months probationary employment. We interview candidates on an ongoing basis, do not wait to submit your application.

Responsibilities

Manage and operate the SIEM platform to address incidents and investigate cybersecurity incidents across various environments. Collaborate with development teams to ensure operational excellence and provide reporting to highlight trends and close security gaps.