A leading security monitoring and response officer will spearhead IT security operations, analyzing threats in a multi-tenant environment.
Key Responsibilities
1. Lead Vulnerability Management:
* Detect and assess critical vulnerabilities;
* Coordinate remediation plans with IT departments for urgent responses;
* Oversight patching activities within the organization;
* Monitor KPIs/KRIs for vulnerability management processes;
* Propose automation projects for vulnerabilities and patch management.
2. Lead SOC Management Activities:
* Act as practice leader for log and SOC management;
* Keep up-to-date process, workflow, and procedure for SOC alerting (level 1 to level 3);
* Identify and maintain playbooks and SIEM correlation requirements triggered by new projects;
* Supervise supplier performance reviews for third-party SOC suppliers;
* Propose automation projects for SOC activities.
3. Incident Response Activities:
* Act as main contact point for security incident coordination with the Incident Manager;
* Participate in root cause analyses and security reporting as a security expert;
* Keep up-to-date Security Incident process and procedure documentations;
* Monitor KPIs/KRIs for security incident management.
4. Support Request Fulfillment:
* Manage standard requests about security topics from IT and clients;
* Validate request fulfillment on IT ticketing tools.
Requirements
* Bachelor's or Master's degree in Information/Security Systems or related field;
* Sound experience in IT security as an ITSO, SOC senior analyst, or blue-team security analyst;
* Solid knowledge of IT systems;
* Strong interpersonal and communication skills;
* Problem-solving skills and proactive attitude;
* Organized, proactive, and customer-oriented person;
* Team player able to work independently;
* Perfect command of English and French, both spoken and written.
Technical Skills
* SIEM/log management tools (Splunk, Sentinel, Elastic, etc.), certification is a plus;
* ITIL process and vulnerability management;
* Threat intelligence and analysis;
* Knowledge of cloud environments and shared services center is an asset;
* DORA, ISO27001, and PSF compliance.