SOC Analyst в IT — рынок СНГ и Европы

Медиана SOC Analyst — $0/мес по данным Zorky CRM (3 активных вакансий с явной SOC-спецификой — реальный pool шире за счёт overlap с general Security Analyst). SOC — самый доступный entry в кибербезопасность, поэтому зарплаты на L1 ниже других security-ролей: L1 (Tier 1) — $1500-3500/мес (entry-level, shift work), L2 (Tier 2) — $3000-5500, L3 (Tier 3) / Threat Hunter / Detection Engineer — $5000-9000 (rare-skill premium), SOC Lead / Manager — $6000-10000. Senior в российских MSSP (BI.ZONE / Solar JSOC / Positive Technologies / Лаборатория Касперского SOC) — $5000-9000 в зависимости от tier. Аутсорсеры (EPAM Security Practice) — $5500-9500 Senior. Международные MSSP (Managed Security Service Providers — Arctic Wolf / eSentire / Expel / Red Canary / Secureworks) — full-remote $6000-12000 Senior L3 / Detection Engineer. Big Tech SOC (Google / Microsoft / AWS Security Operations) — $9000-16000+ Senior. Detection Engineer (rising 2024+ — SOC's engineering specialty) — премиум $6000-11000 Senior. Премиум-доплаты: CySA+ / BTL1 / GIAC GCIH +10-20%, detection engineering skills (Sigma / SPL / KQL rule authoring) +15-25%, SOAR automation (Python) +10-20%, threat hunting expertise +15-25%.

SOC — лучший entry-point в кибербезопасность — L1 принимает junior-кандидатов без commercial experience (с CompTIA Security+ / CySA+ certs + home lab). L1 typical: shift work 24×7 (12-hour shifts common), alert triage, follow playbooks. Скачок L1 → L2 — после ~1-2 года + demonstrated investigation skills (deep analysis, not just triage). L2 → L3 / Threat Hunter / Detection Engineer — после ~2-3 года + advanced skills (threat hunting + detection rule authoring + malware analysis). L3 → SOC Lead / Manager — team management track, либо → Security Engineer (engineering pivot — broader), либо → Incident Response specialist, либо → Threat Intelligence analyst. Career-flow: Entry (certs + home lab) → SOC L1 (1-2 года) → L2 (2-3 года) → L3 / Detection Engineer / Threat Hunter → либо SOC Lead / Manager, либо Security Engineer pivot (broader engineering — higher ceiling), либо специализация (IR / Threat Intel / Malware Analysis). Важно: SOC L1 — не карьерный тупик, а проверенный launchpad. Многие Senior Security Engineers / Pentesters начинали в SOC.

Москва: SOC L1 — $2000-3500/мес, L2 — $3500-5500, L3 / Detection Engineer — $5500-9000, SOC Lead — $7000-10000 (банки доминируют — Сбер.Tech Cyber Defense Center / Тинькофф SOC / ВТБ / Газпромбанк / Альфа / Райффайзен SOC teams + Russian MSSP — BI.ZONE (BI.ZONE TDR / SOC services) + Solar (Solar JSOC — крупнейший коммерческий SOC в РФ) + Positive Technologies (PT Expert Security Center SOC) + Лаборатория Касперского (Kaspersky SOC / MDR) + Информзащита + Angara SOC + Jet CSIRT (Инфосистемы Джет); Яндекс / VK / Ozon / X5 Group / МТС internal SOC teams; госкомпании — ГосСОПКА-связанные центры). СПб $1800-9000 в зависимости от tier. Минск/Киев $1500-8000. Польша €3000-9000 gross. Германия €45-95K/год. 0.0% — удалёнка (L1 shift work — часто remote 24×7 coverage возможна; L3 / Detection Engineering — remote-friendly). Аутсорсеры (EPAM Security Practice / Luxoft) — обычно remote, $5500-9500 Senior L3. Международные MSSP (Arctic Wolf + eSentire + Expel + Red Canary + Secureworks + Rapid7 MDR + Sophos MDR) — full-remote $6000-12000 Senior L3 / Detection Engineer. Big Tech SOC (Google Security Operations / Microsoft / AWS) — $9000-16000+ Senior. Премиум для Detection Engineers с Sigma / SPL / KQL mastery — $7000-12000+.

Топ-5: go. SIEM mastery (primary tool — где SOC живёт): один из Splunk Enterprise Security (industry leader — SPL query language — must знать) / Microsoft Sentinel (cloud-native — KQL — rising 2024+) / IBM QRadar (legacy) / Elastic Security / Sumo Logic / Google Chronicle / Exabeam (UEBA-strong). Russian: Positive Technologies MaxPatrol SIEM / Лаборатория Касперского KUMA / RuSIEM / Solar Dozor SIEM / BI.ZONE Sensor / Security Vision. SIEM query languages: SPL (Splunk) или KQL (Kusto — Sentinel) — must для investigation + detection. EDR / XDR: CrowdStrike Falcon (leader) / SentinelOne / Microsoft Defender for Endpoint / Palo Alto Cortex XDR. Russian: Kaspersky KEDR / MaxPatrol EDR. SOAR (automation — reduces toil): Palo Alto Cortex XSOAR / Splunk SOAR / Tines / Torq / Microsoft Sentinel Playbooks. NDR: Darktrace / Vectra / PT NAD. Threat Intelligence: Recorded Future / Mandiant / MISP (open-source) / VirusTotal / AlienVault OTX. Russian: BI.ZONE ThreatVision / Kaspersky TI. Ticketing / case management: TheHive (open-source SOC case management — popular) / Jira Service Management / ServiceNow Security Operations. Frameworks & methodologies — must: MITRE ATT&CK (adversary TTPs taxonomy — modern SOC maps все alerts к ATT&CK techniques + coverage gap analysis), Cyber Kill Chain (Lockheed Martin — attack phases), Diamond Model (intrusion analysis), Pyramid of Pain (IoC value hierarchy). Analysis tools: Wireshark (packet analysis) / VirusTotal (file / URL / hash reputation) / any.run + Joe Sandbox + Cuckoo (malware sandboxes — detonate suspicious files) / CyberChef (data decoding Swiss Army knife — base64 / hex / encryption) / Volatility (memory forensics — L3) / OSINT tools (Shodan + urlscan.io + AbuseIPDB + GreyNoise). Detection engineering (L3 / Detection Engineer): Sigma (vendor-agnostic detection rule format — standard 2026 — write once, convert к Splunk / Sentinel / Elastic), YARA (malware pattern matching), Splunk SPL / Sentinel KQL rule authoring, Atomic Red Team + Caldera (adversary emulation для detection rule validation). Languages: Python primary (alert enrichment + SOAR playbooks + automation) + bash + PowerShell + KQL / SPL query languages.

SOC Analyst (эта страница) — operational role, real-time monitoring + alert triage + incident detection. Front-line defense. L1 / L2 / L3 tier structure. Часто shift work 24×7. Самый доступный entry. Зарплаты $1500-9000 в зависимости от tier. Security Engineer (general) — engineering role, builds + maintains security infrastructure (SIEM / EDR / IAM / network security configuration). Strategy + automation focus, не real-time monitoring. См. Security Engineer (general). Зарплаты $4500-9500. Threat Hunter — proactive specialty: hunt for threats что SIEM signature-based detection пропустила (hypothesis-driven hunting using ATT&CK + behavioral analysis). Часто SOC L3 sub-specialty. Зарплаты $5500-10000. Incident Responder (IR) — reactive deep specialty: handles confirmed major incidents (containment + eradication + recovery + forensics + post-mortem). Часто separate CSIRT team или external IR consultancy (Mandiant / Group-IB / BI.ZONE DFIR). Зарплаты $6000-13000. Detection Engineer (rising 2024+) — SOC's engineering arm: writes + tunes detection rules (Sigma / SPL / KQL), reduces false-positive rates, builds detection coverage против ATT&CK. Bridge SOC ↔ Security Engineering. Зарплаты $6000-11000. Reality 2026 (relationship): SOC L1 (triage) → L2 (investigation) → L3 (advanced — часто = Threat Hunter / Detection Engineer hybrid). Security Engineer builds the tools SOC uses. IR takes over когда SOC confirms major incident. Career-flow из SOC: SOC L3 → либо Security Engineer (broader engineering — higher ceiling), либо Threat Hunter (proactive deep), либо Incident Responder (reactive deep), либо Detection Engineer (engineering-leaning), либо SOC Manager (people management), либо Pentester (offensive pivot — understanding defense helps), либо Threat Intelligence Analyst. SOC — best launchpad: даёт broad exposure ко всем security domains, потом specialize.

Classic SOC tier model 2026 (некоторые modern SOC переходят к «tierless» model, но tier structure остаётся dominant): L1 (Tier 1) — Alert Triage Analyst: Responsibilities: monitor SIEM / EDR / NDR alert queue 24×7, perform initial triage (validate alert — true positive / false positive / benign), follow established playbooks, enrich alerts (look up IPs / hashes / domains в threat intel), escalate confirmed / suspicious incidents к L2, dismiss false positives. Skills: SIEM basics, alert interpretation, playbook execution, attention to detail under repetitive load. Typical: shift work (часто 12-hour shifts 24×7 rotation), entry-level (1-2 года experience или fresh с certs). Burnout risk высокий (repetitive + night shifts) — typical L1 tenure 1-2 года перед promotion. L2 (Tier 2) — Incident Responder / Investigator: Responsibilities: deep investigation escalated incidents, correlation across data sources (SIEM + EDR + network + cloud logs), scope incident (что affected, timeline reconstruction), determine attack technique (MITRE ATT&CK mapping), recommend containment actions, handle malware analysis (basic — sandbox detonation), document incident thoroughly. Skills: investigation methodology, log analysis depth, malware analysis basics, ATT&CK fluency, SIEM query mastery (SPL / KQL). L3 (Tier 3) — Senior Analyst / Threat Hunter / Detection Engineer: Responsibilities: handle most complex / sophisticated incidents (APT-level), threat hunting (proactive — hypothesis-driven search for threats SIEM missed), detection engineering (write + tune detection rules — Sigma / SPL / KQL — reduce false-positive rates + improve coverage), advanced malware analysis + reverse engineering basics, forensics (memory — Volatility, disk), mentor L1 / L2, develop playbooks, adversary emulation (Atomic Red Team / Caldera для validate detections). Skills: deep technical expertise, threat hunting methodology, detection engineering, programming (Python для automation), forensics. SOC Lead / SOC Manager: team leadership, shift scheduling, SOC metrics ownership (MTTD — Mean Time to Detect, MTTR — Mean Time to Respond, alert volume, false-positive rate, escalation accuracy), SLA management, hiring, customer communication (для MSSP). Cross-cutting: SOC metrics — MTTD / MTTR / dwell time / alert-to-incident ratio / analyst-touch-rate. Modern trends 2026: SOAR automation reduces L1 toil (automate 50%+ repetitive triage), «tierless SOC» model (некоторые orgs flatten hierarchy — all analysts investigate, specialization vs tier), AI-assisted triage (LLM-based alert summarization + enrichment — rising 2024+). Shift reality: 24×7 coverage требует follow-the-sun model (multiple geo locations) или night shift rotations (burnout management critical).

Да, 0.0% SOC Analyst-вакансий — full-remote или гибрид. SOC work primarily cloud-based (SIEM / EDR / SOAR consoles + dashboards — all accessible remotely). L1 shift work — many SOC поддерживают remote 24×7 coverage (analysts work shifts from home — особенно follow-the-sun MSSP model где разные geo locations покрывают разные часовые пояса). Аутсорсеры (EPAM Security Practice / Luxoft) — обычно remote. Российские банки SOC (Сбер Cyber Defense Center / Тинькофф SOC / ВТБ) — гибрид/офис за счёт regulatory + security clearances (особенно для госкомпаний + ГосСОПКА-связанных центров — on-site mandatory). Russian MSSP (BI.ZONE / Solar JSOC / Positive Technologies / Лаборатория Касперского / Информзащита / Angara / Jet CSIRT) — гибрид или remote после security background-check. Госкомпании / ГосСОПКА — гибрид/офис обязательный (air-gapped environments + clearances). Международные MSSP (Arctic Wolf / eSentire / Expel / Red Canary / Secureworks / Rapid7 MDR / Sophos MDR) — full-remote standard (MSSP business model inherently remote-friendly — serve clients globally). Big Tech SOC (Google / Microsoft / AWS Security Operations) — гибрид-standard. Caveat для shift work: night shifts требуют reliable home setup + quiet space. Time zone — SOC roles часто требуют overlap с team coverage windows. Релокант-хабы: Польша / Германия / Сербия / Грузия. Английский для international SOC-remote — must (особенно MSSP — serve English-speaking clients + vendor docs Splunk / CrowdStrike / Sentinel).

SOC Analyst (L1 / L2) — consumes detection rules: responds к alerts that detection rules generate. Reactive. Detection Engineer (rising specialty 2024+ — часто evolved from SOC L3) — creates + maintains detection rules: SOC's engineering arm. Day-to-day: 1) Write detection rules (Sigma — vendor-agnostic format — write once, convert к Splunk SPL / Sentinel KQL / Elastic; native SPL / KQL для platform-specific). 2) Tune false-positive rates (badly-tuned rules → alert fatigue → real threats missed — Detection Engineer's core mandate: high signal-to-noise). 3) Detection coverage analysis (map detections к MITRE ATT&CK matrix → identify coverage gaps → prioritize new detections). 4) Detection-as-code (treat detection rules как code — version control в Git + CI/CD pipeline + testing + peer review — modern practice). 5) Adversary emulation (Atomic Red Team + Caldera + MITRE Caldera — simulate attacks → validate detections fire correctly). 6) Threat intelligence integration (convert threat intel reports → actionable detection rules). 7) Detection metrics (rule efficacy + false-positive rate + true-positive rate + coverage %). Skills: programming (Python — must), SIEM query languages mastery (SPL / KQL), MITRE ATT&CK deep, understanding attacker TTPs, Git / CI-CD (detection-as-code). Why rising 2024+: orgs realized — buying more SIEM / EDR tools не помогает если detection rules плохие. Quality of detections > quantity of tools. Detection Engineering — recognized discipline (SANS course SEC555, dedicated conferences). Зарплаты: Detection Engineer — премиум над SOC L2 +20-40% за счёт engineering skills + rare-skill. $6000-11000 Senior. Career-flow: SOC L2 / L3 + programming skills + detection rule authoring interest → Detection Engineer — 6-12 месяцев. Detection Engineering — один из лучших career paths из SOC (избегает SOC burnout + leverages engineering skills + higher ceiling).

В топе: Сбер.Tech, BI.ZONE, Solar. Russian MSSP (Managed Security Service Providers — commercial SOC — крупнейший SOC-employer channel): BI.ZONE (BI.ZONE TDR — Threat Detection & Response + SOC services), Solar (МТС RED — Solar JSOC — крупнейший коммерческий SOC в РФ), Positive Technologies (PT Expert Security Center SOC + PT ESC), Лаборатория Касперского (Kaspersky SOC + Kaspersky MDR — Managed Detection & Response), Информзащита (IZ:SOC), Angara Security (Angara SOC), Инфосистемы Джет (Jet CSIRT), RTM Group, МТС RED SOC, Innostage (CyberART SOC). Russian banks (internal SOC teams): Сбер.Tech (Cyber Defense Center — крупнейший internal SOC РФ) / Тинькофф SOC / ВТБ / Газпромбанк / Альфа-Банк / Райффайзен / Россельхозбанк / МКБ. Telecom SOC: Ростелеком (RTK-SOC) / МТС / МегаФон. Яндекс (Security Operations) / VK / Ozon / Wildberries / X5 Group internal SOC. Госкомпании / ГосСОПКА (Государственная система обнаружения, предупреждения и ликвидации последствий компьютерных атак) — отраслевые / ведомственные центры ГосСОПКА. Аутсорсеры: EPAM Security Practice / Luxoft Security / Andersen / DataArt. International MSSP (full-remote премиум): Arctic Wolf (MDR leader), eSentire, Expel (modern SOC — известна culture), Red Canary (MDR + detection engineering culture), Secureworks (Dell), Rapid7 MDR, Sophos MDR, CrowdStrike Falcon Complete (managed EDR), Binary Defense, Critical Start. Big Tech SOC (топ-tier): Google Security Operations / Microsoft (Defender Experts — managed) / AWS Security / Apple / Meta. Threat Intel + IR consultancies (часто hire SOC L3 → IR): Mandiant (Google) / CrowdStrike Services / Group-IB-FACCT. Y Combinator security startups (modern SOC platforms — e.g. Tines / Torq / Panther — также hire detection engineers).

Roadmap (SOC — самый доступный entry в кибербезопасность, можно войти без commercial experience): 1) IT fundamentals — networking (TCP / IP / DNS / HTTP / TLS — must), operating systems (Windows internals + Linux basics — где живут логи + что атакуют), basic system administration. CompTIA Network+ helpful baseline. 2) Security fundamentals — CompTIA Security+ (industry-standard entry cert — must для SOC L1 applications). CIA Triad, common attacks (phishing / malware / lateral movement / privilege escalation), security concepts. 3) SOC-specific cert — CompTIA CySA+ (Cybersecurity Analyst — SOC-focused — behavioral analytics + incident response) или Blue Team Level 1 (BTL1) (Security Blue Team — practical hands-on SOC cert — rising 2024+, highly respected — incident response + SIEM + threat intel + digital forensics). 4) SIEM hands-on — самый важный SOC skill. Splunk Fundamentals (free training — SPL query language) или Microsoft Sentinel (Azure free tier — KQL). Build home lab: ingest logs → write queries → create alerts. 5) MITRE ATT&CK fluency — изучить ATT&CK matrix (tactics + techniques), understand how alerts map к techniques. ATT&CK Navigator hands-on. 6) Home lab — set up SOC home lab: Security Onion (free SOC platform — Suricata + Zeek + Elastic) или Wazuh SIEM + simulate attacks (Atomic Red Team) + practice detection. 7) Hands-on practice platforms: TryHackMe SOC Level 1 + SOC Level 2 paths (best practical SOC training 2026 — affordable), Blue Team Labs Online (BTLO — investigation challenges), LetsDefend (SOC simulation platform — realistic alert triage practice), CyberDefenders (blue team CTF challenges). 8) Analysis tools — Wireshark (packet analysis) + VirusTotal + CyberChef (data decoding) + any.run (malware sandbox — free tier). Practice на real malware samples (malware-traffic-analysis.net). 9) Incident response basics — investigation methodology, the SANS PICERL model (Preparation / Identification / Containment / Eradication / Recovery / Lessons Learned). 10) Detection engineering basics (для L3 path) — Sigma rules + YARA + SPL / KQL rule authoring. 11) Python for SOC — alert enrichment scripts + SOAR playbook basics + automation. 12) Pet-проект portfolio: a) home SOC lab (Security Onion / Wazuh + simulated attacks + custom detections); b) TryHackMe SOC paths completion + writeups; c) LetsDefend / CyberDefenders investigation writeups (blog). Курсы РФ: BI.ZONE Cybersecurity Academy (SOC track), Positive Technologies Education (PT ESC SOC training), Solar SOC training, Лаборатория Касперского SOC courses, Securitm, SkillFactory «Специалист SOC», Otus «Аналитик SOC». International (eng): TryHackMe SOC Level 1 / 2 paths (best practical 2026), LetsDefend (SOC simulation), Blue Team Labs Online, SANS SEC450 Blue Team Fundamentals + SEC555 SIEM with Tactical Analytics (premium), «Blue Team Handbook» Don Murdoch (canonical SOC reference), «The Practice of Network Security Monitoring» Richard Bejtlich. Books-must: «Blue Team Handbook: SOC, SIEM, and Threat Hunting» Don Murdoch, «Applied Network Security Monitoring» Sanders / Smith, «Intelligence-Driven Incident Response» Roberts / Brown. Communities: r/blueteamsec, r/cybersecurity, r/SecurityCareerAdvice, Blue Team Village (DEF CON), Telegram @soc_chat, @security_ru. SOC — entry-level accessible: certs (Security+ + CySA+ / BTL1) + home lab + TryHackMe portfolio → SOC L1 (без commercial experience возможно).

3 активных открытых SOC Analyst-вакансий с явной SOC-спецификой в нашей выборке. Реальный рынок значительно шире — many SOC roles classified как general «Security Analyst» / «Аналитик информационной безопасности» / «Specialist SOC» / «Информационная безопасность». SOC — один из самых ёмких security-сегментов by headcount (24×7 coverage требует много analysts — typical enterprise SOC 10-50+ analysts, MSSP — сотни). True SOC jobs в СНГ + Европе оценочно 500-2000+ позиций активных любой момент 2026 (SOC — high-volume hiring за счёт L1 turnover + 24×7 staffing). География: 🇷🇺 Россия / 🇵🇱 Польша / remote. Источники: hh.ru (огромное количество SOC-вакансий — банки + MSSP + госкомпании active), Habr Career, getmatch, Djinni, LinkedIn (международный SOC сегмент через MSSP — Arctic Wolf / eSentire / Expel / Red Canary / Secureworks), NoFluffJobs / JustJoin.it (Польша), Telegram (@soc_chat, @cybersec_jobs, @security_ru, @threat_intel_ru), карьерные сайты Russian MSSP (bi.zone / rt-solar.ru / ptsecurity.com / kaspersky.com / infosec.ru / angarasecurity.ru / jet.su), EPAM Security Practice / Luxoft, специализированные борды (cybersecjobs.com / infosec-jobs.com / cyberseek.org), Big Tech SOC careers. Реальный рынок шире за счёт международного remote-сегмента (MSSP business model — inherently remote — Arctic Wolf / eSentire / Expel / Red Canary serve clients globally). Время закрытия SOC L1 — 2-6 недель (high-volume entry-level hiring), Senior L3 / Detection Engineer — 6-12 недель (rare-skill). SOC — самый ликвидный entry-level security job market — лучший способ войти в кибербезопасность 2026.

Senior SOC Analyst L3 / Detection Engineer владеет полным циклом security operations + detection engineering. SIEM mastery deep: Splunk Enterprise Security advanced (SPL mastery — complex correlation searches + macros + lookup tables + data models) или Microsoft Sentinel (KQL mastery — advanced queries + analytics rules + workbooks). Custom detection rule authoring + tuning false-positive rates (core mandate — high signal-to-noise). MITRE ATT&CK mastery: deep fluency со всеми tactics + techniques + sub-techniques, ATT&CK Navigator для detection coverage gap analysis, map every detection к ATT&CK. Detection engineering: Sigma rule authoring (vendor-agnostic — convert к Splunk / Sentinel / Elastic), YARA rules (malware pattern matching), detection-as-code practices (Git version control + CI/CD + peer review + testing), adversary emulation (Atomic Red Team + Caldera — validate detections fire). Threat hunting mastery: hypothesis-driven hunting methodology (не wait for alerts — proactively hunt), behavioral analysis, hunting using ATT&CK + threat intelligence, anomaly detection. Incident response: investigation methodology (SANS PICERL), incident scoping + timeline reconstruction, containment strategy, lead L1 / L2 during major incidents. Malware analysis: static analysis basics (strings + PE headers + jadx / Ghidra basics), dynamic analysis (sandbox detonation — any.run / Joe Sandbox / Cuckoo — interpret results), basic reverse engineering. Forensics: memory forensics (Volatility), disk forensics basics, network forensics (Wireshark + Zeek), log analysis depth. Threat Intelligence: IoC workflows, STIX / TAXII, MISP, threat actor profiling, convert intel reports → detection rules. EDR / XDR mastery: CrowdStrike Falcon / SentinelOne / Microsoft Defender advanced — threat hunting queries, custom IOA rules, response actions. SOAR mastery: Cortex XSOAR / Splunk SOAR / Tines — playbook authoring в Python (automate L1 toil — typical mandate automate 50%+ repetitive triage). Programming: Python deep (alert enrichment + SOAR playbooks + detection automation + custom tooling), bash + PowerShell. Cloud security monitoring: AWS CloudTrail / GuardDuty + GCP Security Command Center + Azure Sentinel — cloud-specific detection. SOC metrics: MTTD / MTTR / dwell time / false-positive rate / detection coverage — measure + improve. Soft: clear incident documentation + technical writing, mentor L1 / L2 analysts, calm under pressure (incident handling), shift handover discipline, communication during incidents (stakeholder updates). Английский для Senior+ MUST — SIEM / EDR vendor docs + threat intel reports + security community англоязычные. Certifications: CompTIA CySA+ / BTL1 / GIAC GCIH (Certified Incident Handler) / GCFA (Forensic Analyst) / GCDA (Detection Analyst) / Splunk Core Certified / Microsoft SC-200. Optional bonus: detection engineering open-source contributions (Sigma rules repository / Atomic Red Team), threat hunting writeups / blog, conference talks (Blue Team Village DEF CON / SANS Blue Team Summit) — резко повышают market value для frontier-MSSP (Red Canary / Expel — detection engineering culture) hiring.

Данные собраны автоматически из 1000+ источников — Telegram-каналов вакансий и сайтов работы СНГ и Восточной Европы (HH, Habr Career, Djinni, DOU, NoFluffJobs, JustJoin.it, Pracuj.pl и других). Парсинг работает круглосуточно, дубликаты фильтруются по описанию и URL, аномальные значения зарплат отсекаются. Подробная методология — на странице «Как работает».