Description of the position
backSecurity Engineer (Detection Engineer - Paris)
Stimulating. Motivating. Challenging.
Kudelski Security, a division of the Kudelski Group (SIX: KUD.S), is an innovative, independent Swiss provider of tailored cyber and media security solutions to enterprises and public sector institutions.
Our team of security experts delivers end-to-end consulting, technology, managed services, and threat intelligence to help organizations build and run successful security programs.
Our global reach and cyber solutions focus is reinforced by key international partnerships.
Kudelski Security is headquartered in Phoenix, Arizona and Cheseaux-sur-Lausanne, Switzerland. For more information, please visit: www.kudelskisecurity.com
Location: Paris, France
Mission
Position Purpose:
As a member of the Managed Security Services department, you will join the Threat Response team, the MSS Detections Engineer is responsible for supporting and managing the tools, systems, and technology provided to clients of Kudelski’s Managed Security Services business globally and to enhance continuously the services by improving our detection capabilities. Kudelski Security’s Managed Security Services include Security Device Management and Support, Threat Monitoring, Managed Endpoint Protection and Response, Managed Attacker Deception, Managed Anti-Malware, and Managed Vulnerability Scanning. In addition to possessing deep technical knowledge, an MSS Detections Engineer interacts extensively with clients and partners using polite professional etiquette.
If you:
- Are passionate about cybersecurity and constantly developing your knowledge
- Are customer oriented and highly motivated by providing excellent client satisfaction
- Are a self-driven technology professional familiar with Security Operations
This position could be for you.
Responsibilities
RESPONSIBILITIES
• Customer satisfaction and overall success of managed services.
• Enhance the Threat Monitoring service by developing / creating / modifying detection rules
• Propose enhancement on tools and workflows
• Respond in a timely manner (within SLA) to escalate support tickets.
• Mentor fellow Security Engineers and Security Analysts.
• Cyber Fusion Centre responsibilities
o Support Threat Monitoring activities (triage, analysis, escalated incidents, threat hunting, detection tuning)
o Support Endpoint Detection and Response activities (threat monitoring, threat hunting, troubleshooting)
o Support Vulnerability scanning service activities (vulnerability triage and analysis, scan configuration)
Requirements / Profile
Profile
The ideal candidate will be passionate about cyber security and providing excellent client satisfaction. He or she will like the “nuts and bolts” of day to day tactical execution of MSS operations with an emphasis on providing world-class Managed Services. He or she must be a self-driven, team oriented, and highly motivated technology professional familiar with Security Operations.
a) Experience & Background:
- Minimum 4 years’ experience in information security managing and monitoring security devices or educational equivalent
- Excellent client service skills
- Excellent analytical thinking and problem-solving skills
- Oral and written communication skills
- Excellent IT skills (network, protocols, infrastructure)
- Good knowledge of SIEM technologies (Splunk, LogRhythm, QRadar Elastic SIEM,…)
- Good knowledge in cyber security threats and tactics (MITRE framework)
- Good knowledge in Cloud and OT/ICS technologies
- Windows and Unix/Linux operating system experience
- Experience reviewing and analyzing log data
- Experience reviewing and analyzing network packet captures
c) Languages:
- Mother Tongue French or C1 equivalent
- Plus a very good level of written and spoken English
These would be a plus:
- CISSP/CCSP/OSCP/CEH/ITIL and other general security certifications
- Technical certifications on vendors’ product
- Any other languages are an asset
Reference: 11767
Publication Date: 29-01-2021
