WORK WITH US

Excellence is the key at OBRELA SECURITY INDUSTRIES. We provide optimum services to the most demanding high profile clients by developing and sustaining their operational security capabilities.

If you too are as enthusiastic and passionate about thriving in a competitive enterprise environment as we are, we urge you to join our elite team! We are looking for hard working, motivated and out of the box thinking minds that would contribute and complement our organisation's vision

 

About the OBRELA Team

Our executive team combined with our team of experts in security, networks and systems management, provide the ground for a stimulating working environment that is energized by the creative process, promotes initiative and critical thinking and provides the framework for flexible work conditions and mutual respect throughout the organization.

 

Our company offers:

  • A competitive compensation package dependent upon candidate’s experience and qualifications
  • Career development opportunities
  • On-going theoretical & hands-on training
  • Motivating and modern working environment

Qualified applicants can forward their CV quoting reference code(s) to: career@obrela.com

All applications will be held and treated with confidentiality.


 

 

Position: Security Analyst Level 1
Category: Security Operations Center
Ref. Code: SEA

The Security Analyst works as a member of the 24x7x365 MSSP Security Operations Center Team. The team operates cutting-edge SIEM technologies to mitigate potential threats, by investigating and responding to various indicators of compromise (IOC).

Job description & Position requirements:

  • Real-Time Event & Log monitoring and analysis using leading SIEM Technology
  • Security Incidents identification and 1st-level investigation
  • Escalation to Level 2 Analysts for incident response

Required Skills and Expertise:

  • Ability to work on a flexible, rotational 24x7x365 schedule
  • Knowledge and understanding of standard & modern attack techniques on applications, systems and networks
  • Knowledge of TCP/IP, Linux and Windows infrastructures and basic network security architecture concepts
  • Excellent verbal and written communication skills, both in English and Greek language
  • Analytical and troubleshooting skills on short timeframes
  • No prior working experience with SIEM/Log Analysis is required, but it will be considered a plus.

As part of the interview process, candidates will be required to verbally demonstrate their knowledge and expertise in the aforementioned areas and skills.


Position: Senior Information Security Penetration Tester Category: Research & Assurance
Ref. Code: SISPT

Job description & Position requirements. The following would constitute some of the position’s main responsibilities:

  • Organizing and Coordinating Technical Vulnerability Assessments.
  • Leading Black/Gray box Penetration Tests (Network, System & Application Level).
  • Evaluating and Designing Systems & Network Security Architectures.
  • Maintaining awareness and knowledge of contemporary standards, practices, procedures and methods and ensuring the Service offerings Methodology is complete and up to the latest industrial and commercial best practices standards.
  • Leading and participating in R&D projects.

Required Skills and Expertise. The ideal candidate should have the following qualifications:

  • 5+ years of relevant work experience.
  • MSc in Information Security.
  • In-depth knowledge of Information Security through both academic and hands-on experience.
  • Leadership and Project Management Skills.
  • Excellent verbal and written communication skills, both in Greek and English language.
  • Ability to write and deliver both technical and executive level documents and presentations.
  • Information Security Certifications (i.e OSCP, CTP, CREST, CISA, CISSP, etc) are highly valued.

As part of the interview process, candidates may be required to actually demonstrate their knowledge and expertise in the aforementioned areas.


Position: Information Security Penetration Tester
Category: Research & Assurance
Ref. Code: ISPT

Job description & Position requirements:

  • Performing Penetration Tests (Network, System, Mobile & Application Level).
  • Performing Vulnerability Assessments.
  • Performing Social Engineering (client side) Exercises.
  • Reviewing Application Source Code for security issues.
  • Researching for new vulnerabilities, attack techniques.
  • Evaluating and Designing Secure Systems & Network Architectures.
  • Reviewing & Developing Technical Guidelines.
  • Developing and delivering Information Security Trainings.
  • Developing tools and scripts.

Required Skills and Expertise:

  • 2-3 years professional experience in a Penetration Testing role (including most of the fields described above).
  • In-depth knowledge of Information Security through both academic and hands-on experience.
  • Excellent verbal and written communication skills, both in Greek and English language.
  • Ability to write and deliver both technical and executive level documents and presentations.
  • Knowledge of International Information Security Standards & Risk Assessment/Risk Management & Penetration Testing Methodologies.
  • MSc in Information Security is highly valued.
  • Penetration Testing Certifications (i.e. CREST, OSCP, OSWP) are highly valued.

As part of the interview process, candidates may be required to actually demonstrate their knowledge and expertise in the aforementioned areas.


Position: Security Engineer
Category: Security Operations Center
Ref. Code: SENG

The Security Engineer works as a member of our MSSP Security Operations Center (SOC) teams and is responsible for the implementation, integration and ongoing operation of innovative security & SIEM solutions. The Security Engineer works closely with the 24x7x365 security analysts team to mitigate incidents and implement new detection strategies.
At least 2 years of system and network administration experience is required. Prior experience with SIEM technologies will be considered a strong plus.

Main responsibilities:

  • Design, implementation and integration of security solutions (incl. SIEM technology) in corporate environments
  • Ongoing management and operation of the security infrastructure in order to achieve diverse goals
  • Collaboration with security analysts to ensure effective SOC monitoring implementation for all Client environments
  • Troubleshooting/Administration/Patch management associated with security infrastructure and supporting technologies (OS / Network / Applications)

Supervising responsibilities:

  • Operate as second level support to a 24x7 MSSP Security Operations Center (SOC)
  • Coordinate escalations and collaborate with L1 analysts to ensure timely resolution of issues
  • Alert Clients regarding intrusions that may present threats to their infrastructure
  • Upon a successful incident identification assist Clients in elimination and prevention of threats

Required skills and expertise:

  • Hands-on knowledge of Linux and Windows administration as well as virtualization technologies (preferably VMWare)
  • Hands-on scripting abilities (bash, python etc)
  • In-depth knowledge and understanding of network, systems and application intrusion techniques and patterns on IT infrastructure
  • Working knowledge of TCP/IP networking, Switches/Routers, Firewalls, WAF, IDS/IPS/AV/HIDS, Mail servers, DNS servers, Proxies/URL filtering, Active Directory/LDAP
  • Experience in using standard security tools and frameworks (eg Metasploit, nmap, Nessus, Burp)
  • Excellent verbal and written communication skills, both in English and Greek language
  • Demonstrate analytical and troubleshooting skills on short timeframes
  • Demonstrate strong communication skills required to discuss and present complex engineering principles and issues to both technical and non-technical level and to write concise reports and documentation
  • Ability to work in a team with little supervision and using own initiative
  • MSc and related certifications will be considered a plus

As part of the interview process, candidates may be required to actually demonstrate their knowledge and expertise in the aforementioned areas.


Position: Information Security Consultant
Category: Governance, Risk & Compliance
Ref. Code: ISC

Job description & position requirements:

  • Responsible for providing high-quality information security services for commercial customers in Greece, Europe, the Southern Eastern Mediterranean and the Middle East
  • Capable to provide, with minimal supervision and guidance, a multidisciplinary range of services in the field of:
  •    Evaluating & Developing Information Security Policies, Standards, Procedures, Policy Implementation Guidelines, Disaster Recovery Plans & Data Classification Structures, Risk Assessment & Risk Management
  •    Information Security Management Programs Development Execution & Compliance Monitoring
  •    Performing Compliance Assessments against Information Security Policies & International Standards (i.e. ISO/IEC 27001, PCI DSS etc)
  •    Providing Guidance, Implementation Facilitation and Training regarding ISO/IEC 27001, PCI DSS
  •    Designing and Delivering Security Awareness Campaigns and Executive Level Trainings
  • Capable to evaluate and continuously improve the Scientific Integrity of corporate service offerings, deliverables and methodologies against the latest industrial and commercial best practices, de facto and de jure standards
  • Maintenance of awareness and knowledge of contemporary practices, procedures and methods and provision of suitable interpretation to directors, managers and staff within the organization
  • Responsible for providing technical support

Required skills and expertise:

  • 3+ years of experience in Information Security Consulting, preferably in an international environment
  • MSc in Information Security is highly valued
  • CISSP/CISA/CISM/ISO 27001 LA certifications are highly valued
  • Excellent verbal and written communication skills, both in Greek and English language
  • A committed, self-motivated, open-minded, result-driven and inspiring personality
  • Ability to travel for onsite engagements in Europe, Balkans, Middle East.

As part of the interview process, candidates may be required to actually demonstrate their knowledge and expertise in the aforementioned areas.