Security Operations Engineer L2

Posted date:  Jan 1, 2022

Beijing, Beijing, China

About this opportunity

We are now looking for a Security Engineer professional. This position includes security event analysis, threat assessment, security incident response strategy, and coordinating all cybersecurity-related investigations and incident response in partnership with the respective stakeholders within Ericsson and/or customer organization and/or 3rd Party Providers.

This role is responsible for supervising, coordinating, supporting, managing, and executing security-related activities to ensure that customer service services are continuously available and performing to Service Level Agreement (SLA) performance levels. The professional will work alongside a highly-skilled, complementary team, ensuring that the information assets we are responsible for protecting are secured.

What you will do

  • Respond after hours (on-call support)
  • Coordinate and conduct event collection, log management, event management, and compliance automation
  • Respond to day-to-day security change requests security operations
  • Conduct security research and intelligence gathering on emerging threats and exploits
  • Perform post-mortem analysis on logs, traffic flows, and other activities to identify malicious activity.
  • Security analysis (networking devices and operating systems, endpoint analysis, network charges)
  • Work with the various Technical Authority teams to respond to and resolve security incidents optimally and quickly.
  • Provide Root Cause Analysis for security incidents and outages/impairments security tools...
  • Coordinate authentication and access controls, including provisioning, changes, and de-provisioning of user and system accounts, security/access roles, and access permissions to information assets
  • Deploy content (policies, signatures, parsers, or rules) for the security infrastructure
  • Work with SIEM, IPS/IDS, IAM vendors for application related issues
  • Mentor level 1 analyst to improve detection capability within the SOC
  • Prepare Use Cases & MOPs on identified scenarios
  • Drive continuous process improvements by providing inputs on the current processes and possible improvement opportunities
  • Business intelligence reporting based on SOC and customer needs
  • Identify and report risks related to security
  • Perform periodic reporting and, when applicable, present to management and/or the customer’s security team

You will bring

  • 4-7 years experience with at least 2 years of experience in IT and 2 years in the security
  • Knowledge of SIEM tools (such as McAfee ESM, QRadar, ArcSight, Splunk, etc.), scanning tools (Nessus, Qualys, IBM AppScan, etc.), and PAM tools (BeyondTrust, CyberArk, etc.)
  • Knowledge of both Linux-based and MS Windows-based system platforms with a deep technical understanding and aptitude for analytical problem-solving
  • Understanding of enterprise computing environments, distributed applications, and a good understanding of TCP/IP networks, along with available security controls (technical & process controls) for respective layers
  • Participate in the out-of-hours on-call rotation, providing technical support to the business for major and critical incidents
  • Good communication skills, English is a must.

Why join Ericsson?

At Ericsson, you´ll have an outstanding opportunity. The chance to use your skills and imagination to push the boundaries of what´s possible. To build never seen before solutions to some of the world’s toughest problems. You´ll be challenged, but you won’t be alone. You´ll be joining a team of diverse innovators, all driven to go beyond the status quo to craft what comes next.

What happens once you apply?

Click Here to find all you need to know about what our typical hiring process looks like.


Ericsson provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, sex, sexual orientation, marital status, pregnancy, parental status, national origin, ethnic background, age, disability, political opinion, social status, veteran status, union membership or genetics.

Ericsson complies with applicable country, state and all local laws governing nondiscrimination in employment in every location across the world in which the company has facilities. In addition, Ericsson supports the UN Guiding Principles for Business and Human Rights and the United Nations Global Compact.

This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation, training and development.

Ericsson expressly prohibits any form of workplace harassment based on race, color, religion, sex, sexual orientation, marital status, pregnancy, parental status, national origin, ethnic background, age, disability, political opinion, social status, veteran status, union membership or genetic information.


Primary country and city: China (CN) || China : Beijing : Beijing 

Req ID: 628623

Be where it begins

Our Culture

Welcome to an inclusive, global company where your opportunity to make an impact is endless. Share your most innovative ideas, bring your unique perspective and bring your unique perspective in a speak up environment. With us, you will no longer be dreaming of what the future holds – you will be redefining it at a company where you’re empowered to lead and perform at your very best.

Learning and Development

Being a part of our team means having the flexibility to take your career in many different directions, but it also means leveraging the supportive structure of a big organization, with clear personal and professional development opportunities. 

Benefits and Rewards

We believe that great accomplishments deserve great benefits and transparent rewards. We strive to offer competitive, unbiased, and fair rewards for all our people. We empower you to manage your own time and promote flexible working opportunities, along with family-friendly policies.

Click here to find out more about our benefits.

Job Segment: Operations Manager, Engineer, Linux, Operations, Security, Engineering, Technology