Senior CSIRT Security Engineer

O projekcie: Engagement & Methodology Engagement type: Time & Material (T&M). Delivery methodology: Agile with bi-weekly sprints. Governance: Quarterly planning, daily meetings, sprint planning, demos, and retrospectives. Wymagania: Core Competencies & Education - Preferably MSc in Information Security.- Fluent in English (written & verbal); French is a plus.- Autonomy and ability to deliver within set timeframes.- Strong organisational and analytical skills.- Good interpersonal and communication skills; effective team player.- Ability to function effectively in a matrix structure.- Certifications such as GREM, Blue Team Level 1 (BTL1), Blue Team Level 2 (BTL2), Certified Red Team Expert (CRTE), or Certified Red Team Professional (CRTP) are a plus. Experience & Technical Skills- Proven record as an incident handler or cyber threat intelligence (CTI) analyst.- Proven experience in digital forensics.- Experience using ServiceNow.- Experience with EDR (e.g., Tanium), Antivirus (e.g., Trellix), SIEM (e.g., Elastic Search), and security tools (Netcraft, Virustotal, Symantec DLP, Ghidra).- Detailed technical knowledge of attacker tactics, techniques, and procedures.- Interest in all aspects of security research and development. Codzienne zadania: - Incident Handling & Response: Manage and respond to cybersecurity incidents. - Investigations & Forensics: Conduct investigations, including digital forensics. - Data Leak Protection: Implement and monitor data leak protection measures. - Phishing Identification: Detect and respond to phishing attempts. - Threat Hunting: Conduct threat hunting campaigns to proactively identify risks. - Cyber Threat Intelligence: Produce and analyse cyber threat intelligence. - Vulnerability Management: Identify, assess, and manage vulnerabilities.