Ingénieur sécurité réseaux (la défense 92)

Our client is in charge of handling incidents for all entities worldwide. Depending on the competencies of the local security team, the CSIRT role goes from coordination to advanced investigation (forensics, ...).

The CSIRT analyst role will cover the following tasks :

• Investigate on cases
• Monitor our security events
• Investigate on complex security alerts discovered
• Handle security incidents
• Participate in security watch
• Participate in processes (exceptions validation, access management, ...)
• Maintain our infrastructure
• Participate in reporting

 

 

 

Must have :

• Fluent English
• Good knowledge of the inner working of traditional security components (firewall, proxy, reverse proxy, VPN, ...) and traditional security architectures

o Previous experience in security operations preferred

• Good knowledge of current security issues (standard attacks, vulnerabilities, threats)
• Good knowledge of networking concepts, TCP/IP and standard protocols (http, ftp, dns, netbios, SSL, ...)
• Scripting capabilities (shell, python, powershell, ...)
• Windows & Linux knowledge

o Particularly from the security point of view

o But also some Linux administration knowledge is a plus

• Very good expression and communication skills

o Proven experience documenting incidents for executive and peer audiences

• Very good analytical skills
• Be able to work autonomously

Nice to have :

• Has already worked in a CERT/CSIRT
• Knowledge of forensics processes and tools
• Public cloud knowledge (particularly AWS)
• OT (industrial IT) knowledge
• Understanding of risk analysis
• French competencies (spoken / read / written)
• Certifications : GCIH, GCIA, GCFE/GCFA, CISSP

 

The candidate should have around-5-7 years of security experience, including 2-3 years in a CSIRT/CERT.

Expérience dans le poste

Minimum 5 ans