Incident Response Specialist (m/f)
Publiée le 22/11/2024
Experis
Temps de travail
Type de contrat
Expérience professionnelle
Télétravail
Experis IT Luxembourg is actively looking for an Incident Response Specialist (m/f) for one of its clients in Luxembourg.
Your responsibilities:
- Assist organizations in managing and responding to a variety of security incidents, offering technical expertise to address and mitigate cyber threats.
- Conduct system forensics and log analysis to support incident response efforts, helping identify and understand the scope of security breaches.
- Collaborate with clients to ensure they are well-prepared for potential cyber incidents by improving their incident response readiness.
- Use insights from your experience with threat tactics, techniques, and procedures (TTPs) to develop and enhance detection capabilities for our Security Operations Center (SOC).
- Participate in "purple team" exercises to evaluate and validate the effectiveness of detection rules and security measures.
- Contribute to the ongoing development and maintenance of in-house tools and applications used by our Computer Security Incident Response Team (CSIRT).
- Facilitate knowledge sharing by leading training sessions and workshops for clients and internal teams on incident response and security best practices.
- Present your work and findings at industry conferences, sharing insights and enhancing the visibility of both your personal expertise and the organization's capabilities.
Your profile:
- Degree in IT, or any related field.
- Experience in cybersecurity, particularly in roles related to incident response, security operations, or penetration testing.
- Deep understanding of networking protocols, as HTTP, DNS, TLS, advanced protocols like HTTP2, QUIC, DoT/DoH, etc. • Solid knowledge of both Windows and Linux operating systems, including their internal structures and event logging mechanisms.
- Proficient in analyzing event logs and conducting forensic investigations.
- Skilled in using both basic and advanced forensic tools such as Volatility, Log2Timeline, Wireshark, Snort, and MISP.
- Some command-line experience would be an asset, particularly in Linux environments.
- Capable of reading and writing Python 3.
- Fluent in English at a professional level (B2 or higher). French would be a great asset.
