Proxym Group

Tunisie

33 Implementation of an Intelligent and Autonomous SOC for IT Infrastructure Security PFE

33 Implementation of an Intelligent and Autonomous SOC for IT Infrastructure Security PFE

Proxym Group•Tunisie

cybersecuritySecurity Operations (SOC)SIEM & Automation

Publié il y a 6 mois

Stage

⏱️4-6 mois

💼Hybride

📅Expiré il y a 6 mois

Reste lisible (ATS friendly).

Description du poste

Project overview

The project consists of designing and deploying an intelligent, autonomous Security Operations Center (SOC) capable of collecting, centralizing and analyzing logs from multiple sources (servers, firewalls, endpoints, cloud applications).
Goal: deliver an operational SOC that proactively detects security incidents, reduces alert noise and automates simple responses to secure the IT infrastructure. (REF: PRX-2026-18)

Objectives & scope

Integrate open-source tools for SIEM, incident analysis, visualization and automation to provide end-to-end detection and response capabilities.
Scope includes log collection, centralization, correlation, alert triage, visualization (dashboards) and orchestration/automation of predefined remediation actions.

Key responsibilities / tasks

Install, configure and deploy components for log ingestion, normalization, storage and correlation across servers, firewalls, endpoints and cloud apps.
Develop detection rules/tuning to reduce false positives, implement alert prioritization, and create simple automated playbooks for common incidents.

Technologies & tools

Working areas explicitly listed: Operating system, Firewall, Network monitoring, SIEM, Orchestration / Automation.
Candidate will evaluate and integrate open-source solutions (SIEM/analysis/visualization/automation) and connect them to the organization's data sources.

Expected deliverables

A deployed, documented and operational SOC architecture including data collection pipelines, correlation rules, dashboards and automation playbooks.
Delivery of documentation and runbooks enabling handover: deployment guides, operational procedures and incident response playbooks.

Profile & requirements

Engineer profile / Bachelor's degree.
Required profile: 1 Trainee. Preferred skills include familiarity with system administration, networking/firewalls, SIEM concepts and basic scripting for automation (practical experience with open-source security tools is an advantage).

How to apply

Apply via the trainees platform: https://trainees-platform.proxym-group.net
Include the reference PRX-2026-18 in your application and highlight relevant projects/skills in SOC/SIEM/automation.