Descripción de la empresa
With nearly 10K employees worldwide, we support companies in their digital transformation. We imagine and realise their ambitions through the infinite possibilities of digital platforms, to change their culture and way of working, and create value in their organisations. Present in 18 countries in Europe and the Middle East and with 25 years of experience, we put "Technology at the service of Man" to build a more humane and sustainable world.
Working at Devoteam means: Working alongside partners such as Google, Microsoft, AWS or Salesforce whose solutions we implement for our clients;Evolve in an international group that supports you in your career development with adapted training and certification courses;Join a specialised team, accompanied by a local manager who can guide you in your choices and promote exchanges with your colleagues, whether during technical or convivial events;Grow in a company that challenges its teams by being agile and ambitious, adapting to enable individual and collective success.Descripción del empleo
We are currently looking for a Security Analyst. This profile needs to maintain current knowledge and understanding of the threat landscape and emerging security threats and have a strong understanding of SOC and Incident Response practices and methodologies.
Job description
- Mandatory to have experience as a Security Administrator
- Plan the actions to attain a specific objective with respect to quality, time, and cost. Coordinate security plans with outside vendors.
- Monitor and analyze log data, network traffic and/or alerts generated by a variety of security technologies in real-time; escalate and explain validated security incidents to customers (related to EDR/MDR services).
- Analyze security breaches to determine their root cause. Routinely review security incidents and other customer deliverables for adherence to the established procedures and guidelines; document, rectify, and provide feedback to other analysts as required.
- Perform vulnerability testing, risk analyses, and security assessments.
- Anticipate security alerts, incidents, and disasters and reduce their likelihood by installing appropriate tools and countermeasures.
- Research new threats and ensure appropriate detection capabilities are in place to identify and respond to these threats.
- Ensure the quality and timeliness of the security incident detection and classification service by ensuring standards and procedures are adhered to within defined SLAs.
Work Experience
1-5 years of experience in the incident security domain.
Profile specification
- Pen Testing knowledge
- Programming Language: Python, C++, MetaSploit Deep Knowledge
- Infrastructure: OS - Network - DNS - Firewalls - Proxies - SIEM - IDS-IPS, AAA (SAML2-Oauth2), VPN, MuleSoft.
- Cloud Computing and SaaS Model analysis (Especially Google Workplace/IAM and Microsoft Azure & Office 365)
- Knowledge of third-party auditing and cloud risk assessment methodologies (able to secure cloud solutions), the MITRE ATT&CK Framework and additional relevant attacker TTPs.
- Ability to create technical documents that can be clearly understood by readers.
- Possess the background knowledge and experience to take pragmatic, informed, and responsible decisions that are both technical and take the needs of the customer fully into account.
- Has good communication skills and speaks fluently in English.
We offer
- A challenging and variable job in an international and dynamic company. Thanks to the personal follow-up, we can provide real career opportunities and planning.
- An attractive salary plus interesting fringe benefits.
#J-18808-Ljbffr