Nantes - CSIRT Level 2 incident handler & digital forensic investigator | 4 years exp. | Français English B2 H/F
Ce cabinet de conseil et d'intégration de technologies dans le monde de la sécurité des biens immatériels.est basé au Grand-Duché du Luxembourg depuis 2012.
Il accompagne ses clients tout au long du cycle de vie de leurs systèmes d'information.
Son rôle de conseil lui permet d'intervenir dans la globalité des projets et ses compétences d'intégration d'être un partenaire complet de ses clients dans la mise en oeuvre de nos recommandations.
Integrated within dynamic and passionate teams, you will have the opportunity to fully invest yourself, innovate and create from the latest technologies.
You will quickly find your place.
In order to understand the business, the challenges of the customers and to accompany them the company regularly organizes meetings, workshops, and training.
It helps you to develop your skills and position you on stimulating projects, adapted to your profile and enabling you to surpass yourself.
Your team
As part of a multidisciplinary team, you will work in the C SIRT department.
The purpose of the service is to help organizations contain, neutralize and remove intrusions by facilitating detection, manipulation and mitigating actual intrusions.
The team is also called upon for post-mortem investigations, where the challenge is to support or refute hypotheses formulated following a proven incident.
The CSIRT Services are young, ambitious and in development.
Your mission :
You will work on clients various security incidents and help CSOC L2 in incident triage.
Your daily task will be the maintenance of CSIRT applications and documentation.
Additionally, you will create detection use cases for Csoc and test them stealthily from time to time in a «Pentest» like engagement.
We will ask you to share your knowledge during training or workshops.
Highly motivated, interested in the fields of cyber defence and research.
More than 4 years of experience- First experience in a similar job with a system engineer background.
- SCADA environments familiar.
- Requires analytical thinking skills or analytical and problem-solving skills.
- Dirty and always incomplete Log analysis capability.
- Could read X86/64 assembly, C, C++, .NET
- Could write python.
- Usage of Volatility, Log2Timeline, Misp, IntelMQ, Wireshark, Tshark, Snort
- Network Fundamentals ET TCP/IP Protocols (HTTP, DNS, FTP, SSL, etc.)
- Understandings of threat Intel limitation and capacity.
- Any related certification GCIH ET (GIAC Certified Incident Handler) etc...
- Deep Understanding of windows, Osx & Linuxes operating systems
- Work calmly and well under pressure
- Maintain composure while dealing with difficult people.
- English B2 minimum