As a Security Analyst/Engineer, you will be responsible for supporting the security operations of our organization by assisting in the monitoring, detection, and response to security incidents. This role offers a blend of security analysis and engineering tasks. This position offers a progression from foundational knowledge to more advanced responsibilities, allowing you to contribute significantly to the organization's cybersecurity efforts.
Key Responsibilities:
Security monitoring and analysis
1. You assist in monitoring security events and alerts from various sources such as SIEM, IDS/IPS, antivirus systems, and endpoint detection platforms
2. You conduct initial analysis of security events to determine their nature and potential impact on the organization
3. You collaborate with senior analysts to investigate and respond to security incidents, including malware infections, phishing attempts, and unauthorized access attempts.
Incident response
4. You contribute to incident response activities by providing technical assistance during security incidents, including containment, eradication, and recovery efforts
5. You document incident response procedures, develop post-incident reports, and conduct lessons learned sessions to improve incident handling capabilities
6. You implement proactive measures to enhance incident detection and response capabilities, such as developing playbooks for common attack scenarios.
Vulnerability management
7. You support the vulnerability management process by assisting in vulnerability scanning, assessment, and remediation efforts
8. You help prioritize and track the resolution of identified vulnerabilities in systems and applications
9. You collaborate with system owners and IT teams to ensure timely patching and mitigation of identified vulnerabilities, leveraging automation and orchestration where possible
10. You conduct security assessments and penetration tests to identify weaknesses in systems, applications, and network infrastructure.
Security tool
11. You assist in the administration and configuration of security tools and technologies, such as firewalls, intrusion detection/prevention systems, and endpoint security solutions
12. You participate in the evaluation and testing of new security technologies to enhance the organization's security posture
13. You optimize the configuration and tuning of security tools and technologies to improve detection accuracy, reduce false positives, and enhance overall effectiveness
14. You evaluate emerging security technologies and solutions, recommending and implementing enhancements to the security toolset based on industry best practices and organizational requirements.
Security awareness and training
15. You support security awareness and training initiatives by assisting in the development of educational materials and delivering security awareness briefings to staff.
Qualifications and Skills:
16. Bachelor's degree in computer science, Information Security, or related field
17. 3-5 years of experience in a cybersecurity role with progressively increasing responsibilities
18. Strong understanding of cybersecurity principles, threat landscape, and attack methodologies
19. Proficiency in security tools and technologies such as SIEM, EDR, IDS/IPS, firewalls, and vulnerability scanners
20. Excellent analytical, problem-solving, and decision-making skills
21. Effective communication and stakeholder management abilities
22. Certifications such as CompTIA Security+, CEH (Certified Ethical Hacker), or equivalent are a plus.
Experience
23. Demonstrated experience in conducting security analysis, incident response, and vulnerability management in a complex environment
24. Hands-on experience with security tool optimization, security assessments, and penetration testing
25. Proven track record of incident response efforts and effectively managing security incidents from detection to resolution.
Career development
This role offers a valuable opportunity for career growth and development in the field of cybersecurity. As you gain experience and proficiency, you will have the opportunity to progress into more specialized roles such as Senior Security Analyst, Incident Responder, or Security Engineer. Continued learning and professional certifications will be encouraged to enhance your skills and knowledge in the cybersecurity domain.
Your Team
Global cyber security team has the mission to enable Carmeuse digitalization strategy without security compromises. The cyber team is composed of regional senior security managers, cyber architects based around the globe with major presence in US, Belgium & Romania. Global cyber team is in charge of security design, delivery and operations to safeguard Carmeuse digital IT & OT footprint. Working with our cybersecurity team, you'll be at the forefront of innovation designed to strengthen our operations.
Your Manager
Victor Alexandrescu, 45 years old, is the leader of the team. With more than 20 years' experience, he brings a wealth of practical knowledge to the role. Victor joined Carmeuse 1 year ago. His management style is direct and based on trust and support. He focuses on efficiency and continuous improvement, always looking for ways to optimize processes and enhance team performance. He promotes a mindset centered on proactive problem-solving and achieving tangible results.
Why Should You Join?
We truly believe that where you work matters and, as a family business, we know what makes our employees happy!
26. Permanent contract
27. Flexible working hours
28. Home working policy
29. Competitive salary package and benefits
30. A lot of growing possibilities
31. A strong HR and training policy to develop your skills
32. Work life balance
#Hybrid
The Recruitment Process:
If you apply for this great position, you could go through these different steps:
33. Olivia Braszko, our Talent Acquisition Lead will analyze your Résumé and cover letter
34. A first "Teams" interview will be scheduled with Olivia. You will take 2 personality questionnaires. She will want to know more about you, as a person and as a professional. She will assess your motivations and answer to your questions
35. You will have a second interview with Victor Alexandrescu (our Cybersecurity Delivery Manager) and Aurelie Mordant (our HRBP).
36. The last interview will take place with Stavros Georgakopoulos (our Cyber Security Architect), Rusty Gavin (our OT Cyber Security Lead) and Eugene Marchenko (our IT Security Director).