Date de publication : 20 mai Localisation : Ile-de-France Type de contrat : CDI Salaire : compétitif
Acteur majeur du secteur assurantiel.
Maintasks
* Handle security incidents to ensure timely mitigation and escalate to appropriate incident resolver groups and leadership as required
* Handle high severity incidents during non-working hours (on-call)
* Assess, analyse, categorize, classify and investigate security incidents
* Collect and document evidence needed for investigation and digital forensics
* Control and contain security incidents
* Follow-up security incidents resolution and track updates in ticketing tool
* Notify and communicate to relevant stakeholders
* Support SOC Security Analysts and local security incident handlers
* Perform lessons learned activities, e.g. security incident reviews, post mortem documentation…
* Participate in use case development and SIEM rules threshold tuning
* Communicate to the relevant stakeholders
* Technical skills required
* Ability to identify risks, threats, vulnerabilities and associated attacks that might involve: malicious code, protocol/design/configuration flaws…
* Strong troubleshooting and analytical skills
* Understanding the Internet and detailed knowledge of network protocols (Ethernet, 802.11.X, IP, ICMP, TCP, UDP…)
* Knowledge of application/services related protocols (DNS, SMTP, HTTP, FTP…)
* Knowledge of network infrastructure elements and architecture (Firewall, Proxy, IPS, WAF…)
* Knowledge of current security vulnerabilities and related attack methodologies
* Detailed knowledge of packet capture analysis and usage of associated tools
* Detailed knowledge of log management (Syslog, CEF, debug levels, parsing…)
* Knowledge of encryption algorithms, digital signature mechanisms and PKI
* Knowledge of scripting, character manipulation and regular expressions
Certifications
* Recommended: GIAC GCIH (SANS SEC504)
* Recommended: Security infrastructure certifications
* Recommended: ITIL foundation
* Optional: GIAC GCFA (SANS FOR508)
* Optional: Offensive security certification (OSCP, SEC560, CEH)
Pour en savoir plus sur Huxley Associates rendez-vous sur notre site www.huxley.com