DEEP - Cyberdefense Analyst SOC

Vos missions

• Participate in a rotation as L2 monitoring customer infrastructure and responding to alerts
• Ensure security incident identification, registration, assessment, quantification, escalation, reporting, communication, mitigation, and threat hunting
• Participate in the expansion and growth of the SOC service, drive integration of new products and services
• Drive integration of new and innovative products and follow-up with Product Management and Sales teams
• Define related processes and procedures, ensuring that Standard Operating Procedures are being created and that adherence and SLAs are met to achieve operational objectives
• Define and implement the required tooling landscape
• Perform threat management, threat modeling, identify threat vectors and develop/constantly improve use cases for security monitoring aligned with the MaGMa and ATT&CK frameworks
• Integrate standard and non-standard logs in SIEM platform
• Create reports, dashboards, metrics and KPIs for SOC operations, present them to customers and management
• Mentor other analysts on the team in both technical and processes areas
• Work closely with stakeholders, build, and maintain positive working relationships with them

Votre profil

• Master’s degree in computer science, or similar (or equivalent professional experience) 
• 5+ years of work experience in security operations, ideally in a SOC
• Experience in network and applications devices security management, including SIEM solutions
• Expert analytical and problem-solving skills
• Have thorough knowledge on best practices including security incident management and security automation and orchestration
• Have an entrepreneurial mindset and be excited about working with a highly agile team
• Have excellent intercultural and interdisciplinary communication capabilities
• Be fluent in English and French,  Luxembourgish will be considered an asset
• Strong time management and multitasking skills as well as attention to details
• Strong communication skills and the ability to communicate technical info to all stakeholders
• CISSP will be an advantage
• You will take part in an on-call 24x7 duty rotation