CSIRT Security Engineer (m/k/n)

Wymagania: Core Competencies & Education Preferably - MSc in Information Security. - Fluent in English (written & verbal); - French is a plus. - Autonomy and ability to deliver within set timeframes. - Strong organisational and analytical skills. - Good interpersonal and communication skills; effective team player. - Ability to function effectively in a matrix structure. - Certifications such as GREM, Blue Team Level 1 (BTL1), Blue Team Level 2 (BTL2), Certified Red Team Expert (CRTE), or Certified Red Team Professional (CRTP) are a plus. Experience & Technical Skills - Proven record as an incident handler or cyber threat intelligence (CTI) analyst. - Proven experience in digital forensics. - Experience using ServiceNow. - Experience with EDR (e.g., Tanium), Antivirus (e.g., Trellix), SIEM (e.g., Elastic Search), and security tools (Netcraft, Virustotal, Symantec DLP, Ghidra). - Detailed technical knowledge of attacker tactics, techniques, and procedures. Interest in all aspects of security research and development. Engagement & Methodology Engagement type: - Time & Material (T&M). - Delivery methodology: Agile with bi-weekly sprints. - Governance: Quarterly planning, daily meetings, sprint planning, demos, and retrospectives. Codzienne zadania: - Incident Handling & Response: Manage and respond to cybersecurity incidents. - Investigations & Forensics: Conduct investigations, including digital forensics. - Data Leak Protection: Implement and monitor data leak protection measures. - Phishing Identification: Detect and respond to phishing attempts. - Threat Hunting: Conduct threat hunting campaigns to proactively identify risks. - Cyber Threat Intelligence: Produce and analyse cyber threat intelligence. - Vulnerability Management: Identify, assess, and manage vulnerabilities.