Analyste en sécurité de l’information / Information Security Analyst

About The Position

Requirements

• Bachelor’s Degree in Computer Science / Information Security / Information Technology or a related field
• Proven track record and experience of the following in a highly complex and global organization:
• Analyzing detected security events
• Performing triage of potential security incidents
• Experience with the technologies including, but not limited to SIEM, IDS/IPS, Network/Host based firewalls, data leakage prevention (DLP).
• Understanding of possible attack activities such as network probing/ scanning, DDOS, malicious code activity, etc.
• Experience scripting in a major language (python/bash/powershell)
• Alternating weekend shift

Nice To Haves

• Willing to work on any of three shifts to offer 24 hours support service.
• Understanding of common network devices such as routers, switches.
• Understanding of basic networking protocols such as IP, DNS, HTTP.
• Excellent written and verbal communication skills, interpersonal and collaborative skills.
• Strong analytical and problem-solving skills.
• Self-motivated to improve knowledge and skills.
• A strong desire to understand the what / why / how of security incidents.
• Understanding of security-related areas (e.g. Malware re-engineering, Cloud Security, Phishing, Deception etc)

Responsibilities

• Monitor alerts for potential security incidents and requests for information. This includes, but not limited to monitoring of real-time channels, tools, dashboards, periodic reports, chat sessions, and tickets.
• Follows incident-specific procedures to perform basic triage of said potential security incidents to determine their nature and priority and eliminate obvious false positives and process requests for information.
• Escalate potential security incidents to senior analysts and implement countermeasures/mitigating controls.
• Coordinate with stakeholders with supporting third party security service providers to triage alerts, events or incidents.
• Monitor and analyze Security Information and Event Management (SIEM) to identify security issues for remediation.
• Knowledge of creating Security Information Event Management (SIEM) policy rulesets.
• Recognize potential, successful, and unsuccessful intrusion attempts and compromises through reviews and analyses of relevant event detail and summary information.
• Interface with a variety of customers in a polite, positive, and professional manner.
• Documents all actions taken in a ticketing system

Benefits

• Competitive salary and discretionary bonuses
• 5 weeks of paid vacation per year
• Lunch and snacks on a daily basis
• Reimbursement for health and wellness expenses
• Free events and workshops
• Donation matching program