Summary
Join the CERT team in New York on a V.I.E assignment to detect and respond to global security incidents while contributing to detection capability improvements and cyber threat intelligence. The role splits roughly between operational incident response and building detection content and security improvements, with initial integration in Paris for onboarding.
Responsibilities
- Analyze investigate and remediate security alerts and incidents end to end from various sources such as EDR AD Firewall Proxy AV VPN Email Gateway and endpoints
- Integrate and parse new log sources for detection
- Develop detection use cases for SIEM and EDR platforms
- Participate in Purple Team exercises to validate detections
- Reduce attack surface by blocking TTPs on security solutions
- Support selection projects including RFI RFP and POC activities
- Contribute to improving CERT documentation and internal processes
- Produce operational and strategic Cyber Threat Intelligence and monitoring
Requirements
- Master degree Bac+5 in computer science or preferably cybersecurity
- At least 2 years experience in a SOC CSIRT or CERT role
- Strong knowledge of Windows and Linux operating systems
- Advanced understanding of malware techniques attack paths and detection methods
- Curiosity critical thinking autonomy organization and rigor in work
- Good communication skills to explain incident impact risks and action plans clearly
- Eligible for VIE including age nationality and service requirements
We have summarized this job description for you, click apply to see more details from the employer.
