- Integrated within the Security Operation Center (SOC) BPCE-IT, the Blue Team is the first line of defence, responsible for defending the enterprise's use of information systems by maintaining its security posture against attackers.
- Detection, categorization and investigation of infrastructure, applications and security incidents.
- Vulnerability management on critical vulnerabilities (handling, categorization and follow-up).
- Leading incident response plans.
- Follow-up of remediation plans.
- Implementation of detection scenarios and treatment of associated alerts.
- Responsible for monitoring and analyzing the organization's networks and systems on a daily basis to detect, identify, investigate, and mitigate potential threats.
- Able to identify anomalous behavior, recognize patterns of malicious activity, and take appropriate corrective action.
- Provide recommendations for improving security posture and assist with incident response plans, policies, and procedures.
- Recommending tools or solutions, participating in audit activities, providing reporting on security events/incidents and collaborating with other teams across the organization.
- Participation in improving correlation and log analysis rules.
- Conduct investigations and research including statistics.
- Interpret or perform first level (Sandbox or manual) minimum scans on malicious codes.
- Improve our Threat Intelligence activity.
- Handling incidents.
- Creating, and managing service requests via our ticketing tools (ServiceSnow / SecOps / TheHive).
- Qualify and analyze these elements to determine the cause of the incident, the mode of operation of the attack (vulnerabilities use, tactics, technics), the scope and the perimeter of compromise.
- Knowledge transferring in-house and writing documentation.
- Operational on the security tools used in the BPCE IS and master the architectures in place.
- Knowledge in SIEM/SOAR.
- Knowledge of the operating principles of Information Monitoring and Security Event Solutions (SIEM).
- Good experience of Splunk and Regex search syntax.
- Good experience of TheHive.
- Good knowledge of network and system architectures.
- Knowledge of the operation of intrusion detection probes and event log correlation tools.
- Good knowledge of Mitre Attack framework and counter measures link to the technics and tactics.
- Good knowledge of Information monitoring and analysis tools and methods.
- Good knowledge of the security standards for different technologies (web servers, messaging, database, DNS, proxy, firewall, etc.).
- Good knowledge in Web application vulnerabilities, malware types (rootkit, ransomware, botnet, etc.), obfuscation and persistence technics (cryptography, packing, etc.), digital investigation/analysis tools, and SandBox behavioral.
- Good level of English – minimum B2 level.
- Good level of French - minimum B1 level.
- Integration in an organization with profound and sustained growth and involvement in pioneering projects with innovative technological solutions;
- Strong IT training plans;
- Professional evolution with intervention in ambitious technological projects, both national and internationally.
-
SOC Engineer
Encontrado em: Talent PT 2A C2 - há 21 horas
Landing Porto, Portugal Tempo integralAt Decskill (Permanent), in Porto, Portugal · Expires at: · Remote policy: Partial remoteDecskill was founded in 2014 as an IT Consulting Company and their main mission is to delivery value through the knowledge. We enable companies to meet the chalenges of digital world by prov ...
-
Informatiker/in, IT-Sicherheitsadministrator/in,IT-Sicherheitsspezialist/in
Encontrado em: Talent BE 2 C2 - há 21 horas
Data-Sec GmbH Porto, PortugalCloud Computing, Sophos, Malware, Palo Alto,Implementierung, Incident Management, Informatik, Cisco, SAML, IT,Firewalls, SIEM, Migrationen, Fortinet, IT-Security,Konfiguration IT-Security Engineer (m/f/d) · We do infrastructures what many others do not - we makethem secure · Ou ...
-
Software Engineer
Encontrado em: Talent PT 2A C2 - há 2 dias
Landing Porto, Portugal Tempo integralAt Synopsys Inc (Permanent), in Porto, Portugal · Expires at: · Remote policy: Partial remoteAt Synopsys, we're at the heart of the innovations that change how we work and play. Self-driving cars, Artificial Intelligence, the cloud, 5 G, and The Internet of Things are among the ...
-
Soc Analyst L1 Or L2
Encontrado em: Buscojobs PT C2 - há 1 dia
Dellent Consulting Porto, PortugalIn this project you'll contact with the European stock market area. Despite its development center being located in Porto and all administrative support in Lisbon, you will be part of a multicultural team that is spread across several European cities.We are looking for several SO ...
-
Staff ASIC Digital Verification Engineer
Encontrado em: Talent PT 2A C2 - há 2 dias
Landing Porto, Portugal Tempo integralAt Synopsys Inc (Permanent), in Porto, Portugal · Expires at: · Remote policy: Partial remoteAt Synopsys, we're at the heart of the innovations that change how we work and play. Self-driving cars, Artificial Intelligence, the cloud, 5G, and The Internet of Things are among the b ...
-
Staff Asic Digital Verification Engineer
Encontrado em: Buscojobs PT C2 - há 3 dias
Synopsys, Inc. Porto, PortugalSynopsys, a world leader in the Semiconductor IP industry, is seeking an ASIC Verification Engineer whose mandate is to: · Work in a Digital Design and Verification Development team contributing to the development and validation of complex digital circuitry for high-speed interfa ...
-
Banking Sector
Encontrado em: Talent PT C2 - há 3 dias
Devoteam Porto, Portugal Tempo integralCompany Description · At Devoteam, we believe that technology with strong human values can actively drive change for the better. Discover how Tech for People unlocks the future, creating a positive impact on the people and the world around us. We are a global leading player in D ...
-
Application Security Architect
Encontrado em: beBee S2 PT - há 5 dias
HUMANIT DIGITAL CONSULTING LDA Porto, Portugal Tempo integralHey Humans, · How are you doing? We're excited to share some news that we believe will brighten your day. · In a world where many companies see employees as just numbers, we at HumanIT take a different approach. We celebrate the power of humans every day, fostering a remarkable t ...
SOC Engineer - Porto, Portugal - Syone
Descrição
We are looking for a SOC Engineer for a challenging project The Syone's client is a French multinational financial services firm specialized in Asset & Wealth Management, Corporate & Investment Banking, Insurance and Payments. Based in Porto, the syone's client mission is to transform traditional banking by developing innovative solutions for the bank's business, operations and work culture worldwide, as a key driver of the company's culture of agility and innovation. Teams of IT and Banking Support Activities work in an integrated, inclusive and transversal way, supporting all the business lines and country platforms.
What you'll do:
Main Tasks and Responsabilities:
What you will need to bring:
What can Syone offer me: