Leader Cybersecurity Analyst

• Operationalise the Cyber Threat information with the essential steps that empowers the SOC , Incident Response (IR) and other cybersecurity teams
• Design the basics of a Threat-informed defence (TID) that could support operational teams shift their focus from vulnerabilities to threats
• Design and implement the use of MITRE ATT&CK to Map and Track Adversary TTPs
• Support the SOC in moving from what (is happening) to how (an attack is happening) by stopping the pointless IOC-driven cat-and-mouse game;
• Design and implement steps to aligning the CTI with SOC and IR.
• Contribute to achieving early warning for cyber resilience with an actionable CTI.
• Establish early warning protocol
• Assistance in preparing the planning of coordination, training and awareness activities related to the Cyber Threat Landscape (CTL);
• Proposal of practical solutions to improve the procedures and tools supporting the CTL activities.
• Support in the SECRISK Unit’s in updating core documents, which may include:
  • Preparation and maintenance of Monthly and quarterly Cyber Threat Reports;
  • Assistance in the follow up of actions with operational teams to address the threats and related indicators of compromise reported.

Requirements

• Master + at least 6 years of professional experience in the following specific fields:
  • Three years’ operational and technical experience related to cyber-defence: deployment/operation of a SOC, CSIRT, Security assessment platform or technical Security infrastructure (PKI, endpoint...)
  • Two years’ experience as a team leader or technical leader for major security-related projects
  • At least one ICT Security professional certification is also required
• Expertise in information systems relating to cyber threat management
• Proven experience in ICT activities (specifically cybersecurity)
• In-depth knowledge of methodologies, processes, tools and frameworks on cybersecurity, including the emerging threats.
• Competent in Enterprise Risk Management and Cybersecurity frameworks
• Excellent organisational skills, ability to work with a minimum supervision and be committed to excellence and quality service delivery
• Ability to generate reports and written analysis on complex and multi-domain security topics, both at high and technical levels
• Be available for managing unplanned events and work under pressure, occasionally outside the normal working hours in case of severe security incidents
• Good communication skills, ability to lead multi-lingual meetings and to do presentations to managers, technical staff and also end-users in the context of user awareness activities
• Leadership, autonomy and commitment to increasing maturity
• Very good knowledge of both written and oral English (proficient user)
• Good command of French is an asset