CSIRT Level 2 Incident Handler & Digital Forensic Investigator | HT2024PM1202

Customer

Our customer is a consulting firm and technology integration in the world of intangible asset security.

Based in the Grand Duchy of Luxembourg since 2012, they support their customers throughout the life cycle of the information systems. Their advisory role allows them to intervene in all projects and their integration skills to be a complete partner of their client in the implementation of their recommendation.

Job Summary

As part of a multidisciplinary team, you will work in our customer’s C SIRT department. The purpose of the service is to help organizations contain, neutralize and remove intrusions by facilitating detection, manipulation and mitigating actual intrusions. The team is also called upon for post-mortem investigations, where the challenge is to support or refute hypotheses formulated following a proven incident. Our customer Services’ CSIRT is young, ambitious and in development.

Responsibilities & Duties

• You will work on client’s various security incidents and help CSOC L2 in incident triage. Your daily task will be the maintenance of CSIRT applications and documentation.
• Additionally, you will create detection use cases for Csoc and test them stealthily from time to time in a «Pentest» like engagement.
• We will ask you to share your knowledge during training or workshops.
  
  

Essential Skills

• Highly motivated, interested in the fields of cyber defence and research.
• First experience in a similar job with a system engineer background.
• SCADA environments familiar.
• Requires analytical thinking skills or analytical and problem-solving skills.
• “Dirty and always incomplete” Log analysis capability.
• Could read X86/64 assembly, C, C++, .NET
• Could write python.
• Usage of Volatility, Log2Timeline, Misp, IntelMQ, Wireshark, Tshark, Snort
• Network Fundamentals – TCP/IP Protocols (HTTP, DNS, FTP, SSL, etc.)
• Understandings of threat Intel limitation and capacity.
• Any related certification GCIH – (GIAC Certified Incident Handler) etc…
• Deep Understanding of windows, Osx & Linuxes operating systems
• Work calmly and well under pressure
• Maintain composure while dealing with difficult people.
• English & French B2 minimum
  
  

Nice To Have Skills

• Highly motivated, interested in the fields of cyber defence and research
• Experience in a similar job (in incident responses regarding cybersecurity)
• Requires analytical thinking skills or analytical and problem-solving skills.
  
  

Background Check Required

Not Required

Benefits

• Salary as per the market.
• Variable margin additionally based on performance
• Meal vouchers
• Company car or Budget leasing.
• Gas Card (even if the person doesn’t want a company car)
• Mutual Insurance (dental, hospitalization)
• Pension Plan
• Internal/External technical training paid by the company
• Other standard benefits of the company
  
  

Assessment

2 interviews are planned with:

• HR – Telephonic Interview
• Technical Interview with Manager (by phone, team or physical)
  
  

Guarantee Period

90 Days. A written confirmation is required from the candidate at the time of profile submission.