Cyber Security Engineer

This position could be for you.

Your responsibilities will cover the following:

Threat Monitoring

o Be the main point of contact of the Cyber Fusion Center at the clients side

o Support standard Cyber Fusion Center activities (Threat Monitoring, Security Device management, Endpoint Detection and Response, Vulnerability scanning services)

o Investigate/Remediate incident escalated by the Cyber Fusion Center or Clients internal units

o Write specific incident response playbooks for the Client

o Define, test, deploy or perform specific use cases and correlation rule, threat hunting activities and threat intelligence activities for the client

o Support large scale incident response activities

Service improvement

o Perform rules tuning of client SIEM in operation

o Support rules factory program in improving the global set of detection

o Qualify, analyze, and provide recommendations for new standard data source requests

o Support Product teams to build best new services to fit with Operations capabilities

o Contribute to clients security projects

o Implement new tools or scripts to increase security operations efficiency

General responsibilities

o Take responsibility for customer satisfaction and overall success of managed services.

o Recommend improvements for Standard Operating Procedures

o Propose enhancement on tools and workflow

o Document actions in tickets to effectively communicate information internally and to customers.

o Adhere to policies, procedures, and security best practices.