L2 SOC analyste informatique Qradar (IT) / Freelance

In 2023, we are pursuing our ambitions to continue to enable organizations' digital transformation. We are looking for our new SOC Lead to join Axway's family. Are you ready? Join us now!!

Together we can. Together we will. Axway is an enterprise integration company that's been around for over 20 years to digitally transform businesses of all sizes with more than 11,000 customers in 100 countries. Axway revitalizes IT infrastructures to enable brilliant digital customer experiences to unlock new business innovation and capabilities. Axway puts companies on a secure, future-proof path for growth.

Axway’s Global IT Team is seeking a SOC Lead to support our infrastructure security. Our Cybersecurity Solutions Group works to enable business while protecting our employees, assets, and customer data.

Responsibilities

The selected candidate will:

• Interface with technical teams to promote security initiatives, ensure policy compliance, and protect Axway sensitive data and critical infrastructure.
• Take part in 24x7x365 monitoring, incident analysis, and respond to information security-related threats including malware, policy violations, and advanced persistent threats.
• Value documentation creation and communication, leverage technical experience to enhance team collaboration, and be self-driven to solve problems with a focus on achieving the team mission.
• Collaborate with the Director, Cybersecurity and various IT Teams to support the IT Security Mission.

In addition, the successful candidate will have responsibility for the various policies and procedures related to our managed Security Operation Center:

• Manage Security Analysis Process

Manage Triage and Response to alerts and incidents

• Define proper threat hunting and analysis procedures.
• Define SLAs and incident reporting procedures.
• Define and document proper procedures.

Document findings and recommendations.

In conjunction with CSG Management

• Create and maintain SOC process documentation.
• Manage remediations and recommendations processes.
• Compliance and Security Reporting.

Administer compliance reporting.

Administer Security Posture reporting.

Assist in evidence collection for company audits

• Policy Definition and Maintenance.

Define and document policies in conjunction with CSG Management.

Maintain policy documentation.

Monitor and report on policy adherence / violations

• Security Tool Monitoring.

Monitor System Upgrades, Management and Policy / Rules Tuning.

Evaluate and recommend automation.

Qualifications

The foundation of success is found in the ability to work with diverse technical and non-technical teams to promote the implementation of security principles into the business processes. A successful candidate must be able to communicate effectively (verbal and written) with our internal and external customers while analyzing and solving security problems collaboratively to ensure the best customer experience to our internal and external customers. Strong ethical behavior must guide the work to protect our customers and their data.

Requirements:

• Minimum of 8+ years of progressively increasing responsibility in the following areas of expertise:

• SOC Analyst or similar role, proficient in triage and escalation of alerts, incident management and response, and adherence to documented SOC processes and concepts.
• Technical IT Engineer (network, server, and/or desktop) with detailed knowledge regarding the administration, use, securing and exploitation of common operating systems [Windows, MAC OS, Linux, iOS, and Android]. Knowledge of various cloud and on-premises business applications, databases, and middleware. Knowledge of server administration including patching, command line, configuration and maintenance. Knowledge of network administration including patching, configuration and maintenance. Experience managing implementation projects and establishing repeatable processes (manual and automated).
• Security engineering experience administering SIEM [Splunk, QRadar, McAfee SIEM, ArcSight], AV technology [Symantec, McAfee, Crowdstrike, Cylance], security configurations for network firewalls [Checkpoint, Palo Alto, Cisco], and analyzing log sources originating from security and networking devices.

Demonstrated knowledge and/or experience in the following:

• In-depth knowledge of security concepts such as cyber-attacks and techniques, threat vectors, risk management, incident management, etc.
• Strong understanding of networking technologies and architectures [TCPIP, OSPF, BGP].

Demonstrated Lead and/or Management experience:

• Ability to effectively communicate (verbal and written) with diverse technical and non-technical teams.
• Ability to analyze and solve problems with limited direction.
• Always maintain ethical behavior for all security processes.
• A strong desire to learn and improve skill sets.
• Ability to self-start, prioritize and complete work with minimal supervision.
• Strong focus on customer service in all work efforts.

Other preferred skills:

• CISSP, SANS GSEC, GCIH, GCIA, CompTIA Network+, Security+ or equivalent industry recognized certifications.
• Intermediate to Expert knowledge of PowerShell and/or Python scripting.
• Malware analysis experience.
• Forensic recovery experience.

Axway is an EEO and AA employer.