Find your next cybersecurity opportunity


Information Security Analyst - Managed Detection and Responsе, VMware Carbon Black



Sofia, Bulgaria · Remote
Posted on Friday, June 2, 2023

Search Jobs

Job Description

The Elevator Pitch: Why will you enjoy this new opportunity?

You share a passion for crafting software that has a significant impact for the world and future of cloud computing. You love solving problems and learning new things and are looking for a company that helps enable those ideas. Technologies come and go, but that excites you because of the endless possibilities it creates. You are looking for an opportunity to work for a company whose software is utilized by every Fortune 500 company and significantly impacts every industry. You want to be a part of a collaborative environment whose teams care about the product they are creating, how they create it, and the impact it has on customers’ business objectives.

This role resides in the VMware Security Business Unit, VMware Carbon Black, which is the leader in cloud-native endpoint protection dedicated to keeping the world safe from cyber-attacks. The Threat Response Analyst (MDR) is responsible for supporting the team's goals by building and supporting the processes and tools required for endpoint security monitoring, security event triage, and incident response for VMware Carbon Black customers, including automating processes, responding to security incidents, improving VMware Carbon Black security efficacy and establishing new detections. The ideal candidate will possess beginner level offensive and defensive security knowledge and skills, and a strong desire to learn which are needed to aid with technical understanding and credibility during active security incidents, ensuring the success of VMware Carbon Black's Managed Detection team.

Success in the Role: What are the performance goals over the first 6-12 months you will work toward completing?

Within your first 6 months

  • Windows disk and memory forensics
  • Understand of the entire Incident Response process and how to use CB technology in it
  • Provide actionable statistical analysis of widespread threat vectors across multiple, varied businesses

After 6 months+

  • Be able to respond to a variety of security incidents
  • Use and build scripts or tools to automate and improve the investigation processes
  • Identify new detections and detection improvements associated with an evolving threat landscape.

What type of work will you be doing? What assignments, requirements, or skills will you be performing on a regular basis?

As a new member of the MDR Team (aka “Team Black Ice”), you will:

  • Gather and apply endpoint security, NGAV, EDR, and threat hunting knowledge and experience to concrete customer problems
  • Use statistics dynamic malware analysis to prevent threats
  • Communicate verbally to our customers regarding technical subject matters
  • Understand and apply the intricate aspects of Windows, macOS, and Linux endpoint security
  • Collaborate with customers and team members to develop an extensive strategy for effective detections of malicious activity
  • Work on shifts and provide operational support to our MDR platform
  • BS/BA in IT, IS or related field of study or equivalent
  • Preferred experience in endpoint, workload, Kubernetes and network security
  • Preferred certifications: CISSP, GCIH, GCFE, GCFA, SSCP, GREM

What is the leadership like for this role? What is the structure and culture of the team like?

This position reports to Hristo Kyurkchiev, Senior R&D Manager leading the Security Analytics team and has a strong technical background in the analytical space and brings 10 years of experience in developing software and managing high performance teams. He believes every team member has a leading role in the performance of the team and is always available for discussions and ideation. The team consists of highly competent engineers on all levels, focusing on iterative development, both of software and our software development practices.

You will join an established broader analytics team, while pioneering the MDR team in Bulgaria. In this you will work with team members locally on-site in Sofia, as well as the MDR team counterparts in USA. Both teams promote open culture of work and encourage sharing ideas, learning from each other, and collaborating in different levels. This is a great opportunity for someone who likes to start new things and put their mark on a team and company.

Where is this role located?

This role is based out of VMware’s Sofia, Bulgaria office and open to candidates in the surrounding area.

What are the benefits and perks of working at VMware?

You and your loved ones will be supported with a competitive and comprehensive benefits package. Below are some highlights, or you can view the complete benefits package by visiting

  • Medical Coverage, Retirement, and Parental Leave Plans for All Family Types
  • Generous Time Off Programs
  • 40 hours of paid time to volunteer in your community
  • Rethink's Neurodiversity program to support parents raising children with learning or behavior challenges, or developmental disabilities
  • Financial contributions to your ongoing development (conference participation, trainings, course work, etc.)
  • Wellness reimbursement and online fitness and wellbeing classes

This is a pipeline requisition utilized for future job openings at VMware.

VMware is an Equal Opportunity Employer and Prohibits Discrimination and Harassment of Any Kind: VMware is committed to the principle of equal employment opportunity for all employees and to providing employees with a work environment free of discrimination and harassment. All employment decisions at VMware are based on business needs, job requirements and individual qualifications, without regard to race, color, religion or belief, national, social or ethnic origin, sex (including pregnancy), age, physical, mental or sensory disability, HIV Status, sexual orientation, gender identity and/or expression, marital, civil union or domestic partnership status, past or present military service, family medical history or genetic information, family or parental status, or any other status protected by the laws or regulations in the locations where we operate. VMware will not tolerate discrimination or harassment based on any of these characteristics. VMware encourages applicants of all ages. VMware will provide reasonable accommodation to employees who have protected disabilities consistent with local law.

Search Jobs