Incident Response Analyst
מרכז, IL
לפני 14 שעות

תאריך עדכון

31 / 10 / 2019

תיאור המשרה

Principal Duties and Responsibilities

  • Detect and respond to IS / IT cybersecurity incidents within our global corporate landscape, on any environment (development, integration, production) and on any site (Office, R&D, Plants, Datacenters, etc.)
  • Operate on all necessary technologies to detect and respond to IS / IT cybersecurity incidents (in particular but not limited to our SIEM)
  • Execute incident response plans, including triage, root cause analysis, remediation and closure (in order to prevent future occurrences or further limit their impact)
  • Request necessary actions and follow up their execution with any other necessary
  • contact, either within the Group or outside (eg : partners)

  • Mentor and provide guidance to IT colleagues with regards to response best practices
  • Identify and execute projects aiming at improving our intrusion detection and response capabilities
  • Produce or enhance all necessary documentations such as knowledge bases, incident response procedures. investigation & remediation workflows - automation, context and orchestration as code.
  • Ensure that applicable procedures are observed permanently or otherwise suggest updates when necessary

  • Be part of Faurecia’s first line of defense. We handle active security events and cuttingedge threats from a variety of sources, you may be part of a 24 / 7 on duty rotation, contribute to a cybersecurity crisis operation cell
  • Provide or contribute to provide proper reporting and metrics in order to measure the efficiency of our cybersecurity incident response resources
  • Ensure continuous improvement through continuous analysis of recurring incidents trends face "Times New Roman" size 1>
  • The ideal candidate will have / be : Education and experience

  • Cyber Security relevant University degree
  • 3 5 years of experience in the field of Cyber Security
  • Basic understanding and experience in IS / IT Security Incident Response and associated best practices
  • Experience in identifying, analyzing, scoping, isolating and eradicating malware or any other hacking threats
  • Understanding of the current threat landscape and adversary tactic, techniques and procedures
  • Knowledge of enterprise-scale security technologies and capabilities including SIEM, incident management (MISP), threat intelligence, full packet capture, protocol analysis / NetFlow usage, network and system monitoring and logging, malware analysis, Endpoint Detection & Response (EDR), firewalling / network filtering, IDS / IPS
  • Capacity to understand, design and enhance incident response processes
  • Strong knowledge in Linux, Windows, and network / cybersecurity equipments (in particular CISCO routers and Checkpoint Firewalls) operation
  • Basic knowledge in cloud technologies
  • Basic knowledge in OS X operating systems
  • Basic knowledge of network and host-based forensic methodologies, user behavioral analysis and other AI / ML oriented cyber security technologies
  • Experience in crisis management or legal constraints applicable to this role is a plus - Scripting skills are a plus
  • Key competencies face "Times New Roman" size 2>

  • Stress tolerance
  • Methodology, rigor
  • Curiosity
  • Strong critical thinking and problem-solving skills
  • Flexibility
  • Strong written and oral communication skills, ability to explain and convince
  • Team work / Cross-functional orchestration skills
  • Ability to distinguish various data confidentiality levels, to protect enterprise secrets
  • Languages

  • English : fluent
  • French and / or German is a plus
  • Profile : Schedule : Full-time Contract : Unlimited Term Education Level : Bachelor or master’s degree

    דווח על משרה זו

    Thank you for reporting this job!

    Your feedback will help us improve the quality of our services.

    הגש מועמדות
    הדוא"ל שלי
    על ידי לחיצה על "לְהַמשִׁיך", אני נותן הסכמה neuvoo לעבד את הנתונים שלי כדי לשלוח לי התראות דוא"ל, כמפורט neuvoo מדיניות פרטיות . אני רשאי לבטל את הסכמתי או לבטל את המנוי בכל עת.
    טופס בקשה