Key skills
Incident response experiencePhishing detectionVulnerability triageTicketing systemsCalm interactionSOC workflow improvementSIEMsBasic scripting skillsCompliance exposureClear communicationSplunkServiceNowJiraCommunication
About this role
Sumsub is a leading full-cycle verification platform that enables scalable compliance. They are looking for an Operational Security Engineer to run and continuously improve day-to-day security operations, focusing on security alerts handling, phishing response, vulnerability coordination, and employee-facing security requests.
Responsibilities:
- Triage and respond to security alerts from multiple sources
- Handle phishing reports and phishing simulations
- Coordinate vulnerability remediation with engineering teams
- Own and maintain SOC playbooks and response templates
- Manage security requests from employees (email, Slack, tickets)
- Ensure all alerts and requests have clear ownership and escalation
- Reduce alert noise and operational friction
- Help onboard and enable new SOC analysts
Requirements:
- Incident response or SOC experience
- Phishing detection and response
- Vulnerability triage and tracking
- Ticketing systems (Jira, YouTrack, ServiceNow, etc.)
- Clear written and verbal communication
- Ability to work with non-security employees calmly and clearly
- Experience improving SOC workflows or processes
- Familiarity with SIEMs (Splunk, etc.)
- Basic scripting or automation skills
- Exposure to compliance or audit support