Senior Security Monitoring and Response Professional
We are seeking a highly skilled Senior Security Monitoring and Response Professional to join our Technology department. Based in our Hamm office, you will report to the head of Risk and Control for implementing and overseeing IT security operations activities, as well as analyzing responses to threats.
Your Key Responsibilities:
1. Lead Vulnerabilities Management and Patching activities:
* Act as practice leader for detecting, assessing critical and high vulnerabilities;
* Coordinate the remediation plan within all IT departments for urgent response;
* Oversight patching activities within the IT organization;
* Feed KPIs/KRIs for Vulnerabilities and patching management processes;
* Automation: Propose and lead projects for automating vulnerabilities and patch management activities.
2. Lead SOC Management activities:
* Act as practice leader for Log and SOC management activities;
* Keep up-to-date processes, workflows, and procedures for SOC alerting (level 1 to level 3);
* Security by design: Identify and maintain playbooks and SIEM correlations requirements triggered by new projects;
* Supplier management: Lead supplier performance reviews for third-party SOC suppliers;
* Automation: Propose and lead projects for automating SOC activities.
3. Incident Management Response activities:
* Act as the main contact point for Security incident coordination in collaboration with Incident managers;
* Participate in root cause analyses and security reporting as a security expert;
* Keep up-to-date security incident process and procedure documentations;
* Feed KPIs/KRIs for security incident management.
4. Support for Request Fulfillment:
* Manage standard requests about security topics from IT and clients;
* Validate request fulfillment on IT ticketing tools.
Your Profile:
* You hold a bachelor's degree or a master's degree in information/security systems or a related field;
* You have sound experience in IT security with successful experience as an ITSO, SOC senior analyst, or blue-team security analyst;
* You have solid IT knowledge;
* You have strong interpersonal and communication skills;
* You have problem-solving skills and a proactive attitude;
* You are organized, proactive, and customer-oriented;
* You are recognized as a team player and able to work autonomously;
* You have a perfect command of English and French, both spoken and written.
Technical Skills:
* You have good experience with SIEM/Log management tools (Splunk, Sentinel, Elastic, etc.), certification in such a domain is a real added value;
* ITIL processes and vulnerability management;
* Threat Intelligence and Analysis;
* You have good knowledge of IT security concepts and solutions (firewalls, WAF, proxies, endpoint security);
* Knowledge of cloud environments and/or shared services centers is an asset;
* DORA, ISO27001, and PSF requirements.