Description
Security CSIRT Specialist
We are looking for a Security Information Event Management (SIEM) and Computer Security Incident Response (CSIRT) Advisor/Analyst.
He/She will join the Information Security department and contribute to expand and continuously improve the capabilities to reduce the risk exposure regarding external and internal security threats.
Responsibilities:
- Contribute to the SIEM service improvement roadmap.
- Act as a technical security advisor within the CIRT (qualify security alerts/events/vulnerabilities in incidents;
- Provide security 3rd line support in incident management;
- Participate in incident post-mortem analysis;
- Be part of the 24/7 on-call security Watch duty°.
- Monitor zero-day vulnerabilities and complex threats and recommend timely actions to remediate/mitigate.
- Organize and coordinate the defence mechanisms (detection, protection and response) deployed across the organization in response to the various attacks (APT, DDOS).
- Contribute to bring and maintain the organization websites to a vulnerability free state.
Required experience and skills:
- More than 5 years' experience in the security field and at least 3 years' experience in a similar role.
- Experience in a banking and financial industry.
- Very Good understanding of security technologies and processes (secure networking, secure development, web infrastructure, WinTEL, UNIX, etc.).
- Experience with HP Arcsight or equivalent and with Qualys technologies.
- Proficiency in CISSP, OWASP, Network Security and ISO.
Soft Skills:
- Team player;
- Pro-active attitude;
- Communication, writing and Influencing skills;
- Analytical and synthesis skills;
- Autonomy, commitment and perseverance;
- Ability to work in a dynamic and multi-cultural environment.
- Languages: English is mandatory. French and/or Dutch is a plus.