Job Description
As a Security Analyst/Engineer, you will be responsible for supporting the security operations of our organization by assisting in the monitoring, detection, and response to security incidents. This role offers a blend of security analysis and engineering tasks. This position offers a progression from foundational knowledge to more advanced responsibilities, allowing you to contribute significantly to the organization's cybersecurity efforts.
Key Responsibilities:
Security monitoring and analysis
- You assist in monitoring security events and alerts from various sources such as SIEM, IDS/IPS, antivirus systems, and endpoint detection platforms
- You conduct initial analysis of security events to determine their nature and potential impact on the organization
- You collaborate with senior analysts to investigate and respond to security incidents, including malware infections, phishing attempts, and unauthorized access attempts.
Incident response
- You contribute to incident response activities by providing technical assistance during security incidents, including containment, eradication, and recovery efforts
- You document incident response procedures, develop post-incident reports, and conduct lessons learned sessions to improve incident handling capabilities
- You implement proactive measures to enhance incident detection and response capabilities, such as developing playbooks for common attack scenarios.
Vulnerability management
- You support the vulnerability management process by assisting in vulnerability scanning, assessment, and remediation efforts
- You help prioritize and track the resolution of identified vulnerabilities in systems and applications
- You collaborate with system owners and IT teams to ensure timely patching and mitigation of identified vulnerabilities, leveraging automation and orchestration where possible
- You conduct security assessments and penetration tests to identify weaknesses in systems, applications, and network infrastructure.
Security tool
- You assist in the administration and configuration of security tools and technologies, such as firewalls, intrusion detection/prevention systems, and endpoint security solutions
- You participate in the evaluation and testing of new security technologies to enhance the organization's security posture
- You optimize the configuration and tuning of security tools and technologies to improve detection accuracy, reduce false positives, and enhance overall effectiveness
- You evaluate emerging security technologies and solutions, recommending and implementing enhancements to the security toolset based on industry best practices and organizational requirements.
Security awareness and training
- You support security awareness and training initiatives by assisting in the development of educational materials and delivering security awareness briefings to staff.
Qualifications and Skills:
- Bachelor's degree in computer science, Information Security, or related field
- 3-5 years of experience in a cybersecurity role with progressively increasing responsibilities
- Strong understanding of cybersecurity principles, threat landscape, and attack methodologies
- Proficiency in security tools and technologies such as SIEM, EDR, IDS/IPS, firewalls, and vulnerability scanners
- Excellent analytical, problem-solving, and decision-making skills
- Effective communication and stakeholder management abilities
- Certifications such as CompTIA Security+, CEH (Certified Ethical Hacker), or equivalent are a plus.
Experience
- Demonstrated experience in conducting security analysis, incident response, and vulnerability management in a complex environment
- Hands-on experience with security tool optimization, security assessments, and penetration testing
- Proven track record of incident response efforts and effectively managing security incidents from detection to resolution.
Career development
This role offers a valuable opportunity for career growth and development in the field of cybersecurity. As you gain experience and proficiency, you will have the opportunity to progress into more specialized roles such as Senior Security Analyst, Incident Responder, or Security Engineer. Continued learning and professional certifications will be encouraged to enhance your skills and knowledge in the cybersecurity domain.
Your Team
Global cyber security team has the mission to enable Carmeuse digitalization strategy without security compromises. The cyber team is composed of regional senior security managers, cyber architects based around the globe with major presence in US, Belgium & Romania. Global cyber team is in charge of security design, delivery and operations to safeguard Carmeuse digital IT & OT footprint. Working with our cybersecurity team, you'll be at the forefront of innovation designed to strengthen our operations.
Your Manager
Victor Alexandrescu, 45 years old, is the leader of the team. With more than 20 years' experience, he brings a wealth of practical knowledge to the role. Victor joined Carmeuse 1 year ago. His management style is direct and based on trust and support. He focuses on efficiency and continuous improvement, always looking for ways to optimize processes and enhance team performance. He promotes a mindset centered on proactive problem-solving and achieving tangible results.
Why Should You Join?
We truly believe that where you work matters and, as a family business, we know what makes our employees happy!
- Permanent contract
- Flexible working hours
- Home working policy
- Competitive salary package and benefits
- A lot of growing possibilities
- A strong HR and training policy to develop your skills
- Work life balance
#Hybrid
The Recruitment Process:
If you apply for this great position, you could go through these different steps:
- Georges Mensah-Boateng, our Talent Acquisition Lead will analyze your Résumé and cover letter
- A first "Teams" interview will be scheduled with Georges. You will take 2 personality questionnaires. He will want to know more about you, as a person and as a professional. He will assess your motivations and answer to your questions
- You will have a second interview with Victor Alexandrescu (our Cybersecurity Delivery Manager) and Aurelie Mordant (our HRBP).
- The last interview will take place with Stavros Georgakopoulos (our Cyber Security Architect), Rusty Gavin (our OT Cyber Security Lead) and Eugene Marchenko (our IT Security Director).
