CSIRT Analyst

🤔Who are we?

As the founding entity of RAINBOW PARTNERS, Quanteam is a consulting firm specializing in the fields of Banking, Finance, and Financial Services. Guided by our core values of closeness, teamwork, diversity, and excellence, our team of 740 expert consultants, representing 35 different nationalities, collaborates across 10 international offices: Paris, Lyon, New York, Montreal, London, Brussels, Geneva, Lisbon, Porto and Casablanca. Committed to sustainability (Ecovadis Gold), diversity (gender index: 92%), and quality of work life (Best Workplace Experience), Quanteam is a forward-thinking enterprise.

🚀 Our Expertise

With a dual expertise in both business and IT, Quanteam supports its corporate clients (investment banks, asset management companies, private and retail banks, custodians, etc.) across the entire Front-to-Back spectrum in evolving their business activities and transformation projects.

Our teams are organized into 5 expertise areas:

➡ Quantitative Finance

➡ Risk, Compliance, and Regulatory

➡ Operations and Finance

➡ Transformation and Organization

➡ Information Systems

In 2023, Quanteam generated a revenue of €74.6 million.

🔎We are looking for a CSIRT Analyst

MAIN TASKS:

• Handling of cyber-investigations provided by CyberSOC use-cases and DLP detection systems
• Analyze the effectiveness of existing DLP controls and continuously seek improvement in technical/functional and process
• Contribute to CyberSOC use-case development and optimization
• Monitor DLP related events, conduct investigations and respond to data leakage incidents according to internal procedures (including interviews with key contributors, i.e. HR, Procurement, DPO, …)
• Develop and enhance data protection policies and rules across the various systems, manage exceptions
• Respond to and facilitating eDiscovery requests from IT S
• Assist in governance by delivering the details reports and KPIs
• Contribute to cybersecurity governance, including the delivering reports and KPI related to the activity, including PCC
• Quick escalate complex incident to Level 3 CSIRT Analysts, ensuring that all relevant data and preliminary findings are accurately communicated to facilitate further analysis
• Contribute to industrialization/formalization of Cyber Defense processes and effectiveness
• Provide analysis and expertise on cyber-incidents, including root-cause by identifying preventive measures

YOUR PROFILE AND SKILLS:

• Event & Incident monitoring and response (identify, alert and contain)
• Cybersecurity (general knowledge in logs analysis, general knowledge regarding endpoints security (e.g.: EDR solution))
• Scripting language (Python)
• Protocol knowledge (HTTP, SMTP…)
• SIEM (Security Information Event Monitoring)
• SOAR (Security Orchestration, Automation and Response)
• DLP (Data Loss Prevention)
• Fluent communication in English (oral & written)
• Hybrid regime in the Porto office

🚀If you feel this opportunity is for you, send your CV and join our team!