Consultant SOC - CDI H/F

Collective
Paris, France
9 days ago

Role details

Contract type
Permanent contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English
Experience level
Intermediate

Job location

Paris, France

Tech stack

Microsoft Windows
Data analysis
Application Firewall
Unix
Cloud Computing Security
Computer Security
Email Filtering
Intrusion Detection and Prevention
Intrusion Detection Systems
Network Security
ArcSight SIEM Tool
Security Information and Event Management
Software Vulnerability Management
QRadar
Firewalls (Computer Science)
Splunk

Job description

Main activities

  • Build on and continuously improve SOC analytics
  • Ensure effective operation of SIEM content (filters, rules, expressions, ...) used within the SOC
  • Mentor and guide the First Level Security Analysts
  • Provides professional data analysis within the SOC processes and to SOC customers to drive further security measures and risk mitigation activities
  • Perform and maintain SOC related analytical processes and tasks
  • Service closely with other Information Security teams and entities to ensure effective intrusion detection and incident response
  • Handle potential high severity incidents autonomously during non-working hours (on rotational on-call basis)
  • Professional communications and reporting to SOC stakeholders and customers
  • Continually maintain and improve technical capabilities through individual development activities, accreditations and certifications to remain constantly prepared to challenge the ever-evolving cyber threat

Requirements

Do you have experience in UNIX?, SEC555 (GCDA) or FOR572 (GNFA) or FOR508 (GCFA) or CISSP is a plus but not mandatory

Overall expertise in the field

  • 3-5 years of expertise in a security operations or incident response service
  • Expertise in information security domain ? 3 years
  • Expertise in security analysis and SIEM content development ? 3 years
  • Expertise in a global organization ? 3 years

Technical Expertise

  • Expertise in security monitoring and analysis tools (e.g., Sentinel, Splunk, QRadar, ArcSight, Google SecOps)
  • Overview of network technologies, Windows and Unix administration
  • Overview of typical security devices such as firewalls, intrusion detection systems, AV and End Point security, Web Application Firewalls, antispam systems, event correlation systems, etc.
  • Overview of security threats, attack scenarios; analysis and intrusion detection skills
  • Hands-on expertise with network security, vulnerability management, and incident response
  • Overview of cloud security concepts and tools

Expertise

  • English context and environment - mandatory

Apply for this position