Are you passionate about making the internet a safer place? We are looking for a Middle Security Operations Researcher to join our team and help protect enterprise clients from harmful bots and online threats. This is a remote, full-time role that offers the opportunity to work directly with global customers, analyzing traffic patterns and neutralizing malicious activity.
At Sigma Software, we value expertise, ownership, and proactive communication. You will collaborate with a diverse international team while enjoying the flexibility of working from anywhere.
Why join us? You will work on impactful cybersecurity projects, gain exposure to cutting-edge analytics tools, and contribute to safeguarding digital ecosystems worldwide.
CUSTOMER Our customer is a global provider of comprehensive security solutions, protecting individuals, organizations, and communities from a wide range of risks, particularly in the digital space. Their enterprise-focused products specialize in bot defense and invalid traffic detection, helping clients safeguard critical systems and maintain operational integrity.
PROJECT The project focuses on real-time threat detection and bot mitigation for enterprise-scale clients. Security Operations Researchers collaborate directly with customers, leveraging advanced analytics platforms to identify malicious traffic patterns and neutralize online threats. This dynamic environment requires both technical expertise and strong communication skills.
JOB DESCRIPTION:
Provide Tier 2 technical support to customers in real time, delivering clear and professional responses
Analyze logs, graphs, and dashboards, isolating and investigating data using tools like Kibana
Manage and organize cases, tickets, and requests in Salesforce
Perform back-office tasks, including writing and maintaining suspicious field expressions
Write and optimize SQL queries for data retrieval, analysis, and manipulation in BigQuery
Communicate with global customers, ensuring timely responses and effective issue resolution
Work in a shift-based schedule, including weekend shifts
QUALIFICATION:
3+ years of experience in data analysis, including working with logs and dashboards
Experience working with web traffic data, including HTTP traffic, logs, request analysis, and traffic pattern investigation
Strong SQL skills: Common Table Expressions (CTE), aggregations, GROUP BY, ORDER BY, filters, window functions (e.g., RANK()), and subqueries
Experience with SIEM systems. Nice to have: experience with the Elastic Stack
Technical understanding of web technologies and client–server architecture (APIs, HTTP, basic HTML/JavaScript)
Strong troubleshooting and problem-solving skills
Experience in customer support, including direct communication with clients; professionalism and politeness are essential
Strong English communication skills
WILL BE A PLUS:
Experience in a Cybersecurity Analyst/Researcher role, ideally supporting external customers in threat detection and response
Experience in web security and security research: web application security, bot management, fraud detection
Basic Python skills
Experience with Kibana
PERSONAL PROFILE:
High level of responsibility and ownership
Ability to work independently with minimal supervision
Planning and decision-making skills with considerations for multiple integrated systems
Proactive communicator who keeps stakeholders informed without being prompted
Work schedule: 40 hours per week, 5 days per week. Workdays can be adjusted to start earlier or later, including weekends if necessary.
