Job summary:
We are seeking a cyber security analyst to join a global company in a growing and continuously evolving field, as part of a collaborative and comfortable team environment.
The selected candidate will work in a Cyber Security Operations Centre on a 24x7x365 basis.
The role has the following objectives:
Manage security incidents following NIST guidelines and supported by MITRE ATT&CK/ENISA, ensuring adequate response in line with security best practices and established procedures. This encompasses proactively monitoring and managing security events displayed in the different tools, and act according to well-defined procedures, ensuring compliance with contractual SLAs and specific KPIs for each global customer, ensuring established quality standards, security best practices, ownership, and transparency.
Key Responsibilities:
Complete the incident management process:
- Register cases in the ticketing system.
- Conduct initial event investigations.
- Perform basic triage activities, identifying true and false positives based on corresponding use cases in production.
- For P1 and P2 security incidents and major global security incidents, immediate escalations will be applied as defined in the security incident management process for each customer.
- Demonstrate discipline and deep knowledge to follow defined processes and documentation, ensuring quality parameters are met.
- Proactively report improvements or deficiencies in processes detected.
Continuous improvement of soft and hard skills, as well as the expertise to manage systems and tools effectively.
Required qualifications:
- Al least 1 year of experience in security operations, preferably in CySOC teams or equivalent related to blue team activities.
- Technical skills in the following security technologies
- SIEM and XDR
- Sandboxing
- Orchestrators
- Ticketing tools
- Basic knowledge of operating system concepts, web server security and networking.
- Knowledge of malware concepts
Soft skills:
- Customer focus
- Teamwork
- Efficient and effective communication adapted to the audience
- Analytical mindset
- Problem-solving ability
- Active listening
- Taking ownership
- Fluent in English, both written and speaking
Valuable qualifications:
- CompTia: Security+, CySA+
- Microsoft certifications: SC-200, SC-900
- Other recognised technical qualification or accreditation in the field of security
Compensation and benefits:
- A competitive salary with benefits (health insurance, retirement plans,..)
- Initial and continuous training to keep up to date in the world of cybersecurity
- Job security
- Hybrid work model