À propos
Qui sommes nous ?
Nous c'est Lutessa, ESN hyper-spécialisée dans 3 domaines d'activité : la Connectivité, le Cloud et la Cybersécurité.
Grâce à une centaine de spécialistes technophiles, Lutessa accompagne ses clients, à savoir, constructeurs, opérateurs, intégrateurs et grands donneurs d'ordres dans l'étude, l'intégration et la gestion de leurs infrastructures critiques.
A ce jour, Lutessa couvre aujourd'hui 2 territoires : la France & Monaco, et a l'ambition d'en ouvrir d'autres !
Pourquoi nous rejoindre ?
Ingénieurs en Cybersécurité, Réseau et Cloud avant tout passionnés par les infrastructures informatiques et également curieux, et animés par l'envie d'un perfectionnement continu ?
Rejoignez la Lutessa Family !
Au delà de vos compétences intrinsèquement techniques, Lutessa vous accueille comme vous êtes et sa promesse est de bâtir ensemble votre carrière avec sincérité et transparence.
Lutessa se veut être un catalyseur et un bâtisseur de carrière, en vous stimulant et vous exposant sur des projets pertinents et enrichissants pour vous.
Vos RingLeaders (référents techniques) s'engagent à vous accompagner dans votre développement en veillant à incarner et transmettre leurs valeurs en toute simplicité.
Venez développer votre potentiel au sein d'une société à taille humaine qui se définit comme une entreprise Joyeuse !
Pour en savoir plus sur notre état d'esprit :
https://www.lutessa.com
Le poste
Mission : Title: Security analyst within the CSIRT (Operational Security Unit)
IT management: Reporting to the IT Management Group, the DSSI defines the Group's IS security policy and supervises its implementation: animation of the CISO (RSSI) network, definition of priorities, management of major projects and performance of audits of security. Within the IT management, the Operational Security Unit (CSIRT) is responsible for ensuring the Group's security supervision, the response and monitoring of incidents as well as the definition and implementation of the permanent control plan.
Missions :
Reporting hierarchically to the Head of the CSIRT, the security analyst contributes operationally to the performance of the Unit's activities. The analyst's missions will consist of :
Incident response:
Analyze and process security incident tickets within a structure or an incident response team Communicate and provide security recommendations to customer services of the incident response unit Launch the first investigations by following the recommendations L1 and L2 of the SOC
Know the different tools in order to extract all the necessary information
Escalate alerts: communicate with the entities concerned by providing as much information as possible to push the investigation as far as possible
Propose corrections to the people concerned and advise them to avoid new alerts of the same type Organization of monitoring on new vulnerabilities, new technologies and attack methods relating to the various components of the IS in all its areas at group level
Consistency of the various vulnerability analysis functions, qualification of security advisories, digital investigations and risk assessment on the IT infrastructure
Organization of the incident response: coordination of actors, participation in the resolution of the crisis, development of communication elements on the state of the crisis
Monitor and coordinate remedial actions
Capitalization and organization of the taking into account of experience feedback following incidents and proposal to improve remediation systems. Integrate and interact with the various CSIRT networks
It makes recommendations for bypass and emergency measures and to improve detection capabilities Being a point of contact between all the entities of the group in order to carry out the investigations in their entirety. Communication with the technical service providers and Its.
Required Skills
Detection tools (IDS, IPS, EDR etc ...)
Analysis tools (logs, events etc ...)
Operational modes
Knowledge of the latest vulnerabilities (CERT-FR) and the solutions that can be provided
Knowledge of different action supports (servers, Workstation, AD, Cloud, mobiles etc ...)
Profil recherché
Compétences attendues :
Detection tools (IDS, IPS, EDR etc ...)
Analysis tools (logs, events etc ...)
Operational modes
Knowledge of the latest vulnerabilities (CERT-FR) and the solutions that can be provided
Knowledge of different action supports (servers, Workstation, AD, Cloud, mobiles etc ...)