DEEP - SOC Analyst
Veröffentlicht am 21/12/2024
Post Luxembourg
Premier opérateur de services postaux et de télécommunications du pays, POST offre également des services financiers et philatéliques.
Vos missions
- Participate in a rotation as L2 monitoring customer infrastructure and responding to alerts
- Ensure security incident identification, registration, assessment, quantification, escalation, reporting, communication, mitigation, and threat hunting
- Participate in the expansion and growth of the SOC service, drive integration of new products and services
- Drive integration of new and innovative products and follow-up with Product Management and Sales teams
- Define related processes and procedures, ensuring that Standard Operating Procedures are being created and that adherence and SLAs are met to achieve operational objectives
- Define and implement the required tooling landscape
- Perform threat management, threat modeling, identify threat vectors and develop/constantly improve use cases for security monitoring aligned with the MaGMa and ATT&CK frameworks
- Integrate standard and non-standard logs in SIEM platform
- Create reports, dashboards, metrics and KPIs for SOC operations, present them to customers and management
- Mentor other analysts on the team in both technical and processes areas
- Work closely with stakeholders, build, and maintain positive working relationships with them
Votre profil
- Master’s degree in computer science, or similar
- 5+ years of work experience in security operations, ideally in a SOC
- Experience in network and applications devices security management, including SIEM solutions
- Expert analytical and problem-solving skills
- Have thorough knowledge on best practices including security incident management and security automation and orchestration
- Have an entrepreneurial mindset and be excited about working with a highly agile team
- Have excellent intercultural and interdisciplinary communication capabilities
- Be fluent in English, French and/or Luxembourgish will be considered an asset
- Strong time management and multitasking skills as well as attention to details
- Strong communication skills and the ability to communicate technical info to all stakeholders
- CISSP will be an advantage
- You will take part in an on-call 24x7 duty rotation