Cyber Security Specialist

• Deploy, configure, and manage all components of the Splunk ecosystem, including forwarders, indexers, and search heads.
• Develop, maintain, and optimize parsing rules and data onboarding pipelines for diverse log sources.
• Ensure the reliability, integrity, and continuity of event log collection, correlation, and analysis processes.
• Manage system and configuration changes in a structured, controlled, and well-documented manner.
• Regularly review, update, and optimize SIEM configurations in line with changes to the network, server, and application environments.
• Administer and support vulnerability scanning platforms and attack surface monitoring tools.
• Manage and maintain secret management solutions.
• Produce and maintain high-quality architecture documentation, operating procedures, and log collection specifications.
• Collaborate with and support other technical teams in the use and integration of cybersecurity tools and platforms.

What do you need to succeed in this position?

• Master’s degree in Computer Science, Cybersecurity, or a related field and minimum 6 years of relevant professional experience
• Three years operational and technical experience in cyber-defense, including deployment and operation of a SOC, CSIRT, security assessment platforms, or technical security infrastructure (PKI, endpoints, etc.).
• Two years experience as a team or technical lead for major security-related projects.
• At least one recognized ICT Security professional certification
• Proficiency with log management and SIEM solutions (Splunk, Cribl).
• Expertise in security architecture and design of cybersecurity solutions.
• Strong understanding of network concepts and associated security technologies, including: Internet/Intranet/Extranet, authentication systems, firewalls, proxies, IDS/IPS, email gateways, IP security, remote access control.
• Windows Security: workstation and server hardening, Active Directory management, log collection and processing.
• Linux Security: server/workstation hardening, monitoring, and log processing.
• Cloud Security: familiarity with Microsoft cloud environments (Sentinel, EntraID, Defender) and AWS cloud environments (GuardDuty, Security Hub).
• Very good knowledge of both written and oral English
• Good command of French is an asset