As a Security Analyst/Engineer, you will be responsible for supporting the security operations of our organization by assisting in the monitoring, detection, and response to security incidents. This role offers a blend of security analysis and engineering tasks. This position offers a progression from foundational knowledge to more advanced responsibilities, allowing you to contribute significantly to the organization's cybersecurity efforts. Key Responsibilities: Security monitoring and analysis
You assist in monitoring security events and alerts from various sources such as SIEM, IDS/IPS, antivirus systems, and endpoint detection platforms
You conduct initial analysis of security events to determine their nature and potential impact on the organization
You collaborate with senior analysts to investigate and respond to security incidents, including malware infections, phishing attempts, and unauthorized access attempts.
Incident response
You contribute to incident response activities by providing technical assistance during security incidents, including containment, eradication, and recovery efforts
You document incident response procedures, develop post-incident reports, and conduct lessons learned sessions to improve incident handling capabilities
You implement proactive measures to enhance incident detection and response capabilities, such as developing playbooks for common attack scenarios.
Vulnerability management
You support the vulnerability management process by assisting in vulnerability scanning, assessment, and remediation efforts
You help prioritize and track the resolution of identified vulnerabilities in systems and applications
You collaborate with system owners and IT teams to ensure timely patching and mitigation of identified vulnerabilities, leveraging automation and orchestration where possible
You conduct security assessments and penetration tests to identify weaknesses in systems, applications, and network infrastructure.
Security tool
You assist in the administration and configuration of security tools and technologies, such as firewalls, intrusion detection/prevention systems, and endpoint security solutions
You participate in the evaluation and testing of new security technologies to enhance the organization's security posture
You optimize the configuration and tuning of security tools and technologies to improve detection accuracy, reduce false positives, and enhance overall effectiveness
You evaluate emerging security technologies and solutions, recommending and implementing enhancements to the security toolset based on industry best practices and organizational requirements.
Security awareness and training
You support security awareness and training initiatives by assisting in the development of educational materials and delivering security awareness briefings to staff.
Qualifications and Skills:
Bachelor's degree in computer science, Information Security, or related field
3-5 years of experience in a cybersecurity role with progressively increasing responsibilities
Strong understanding of cybersecurity principles, threat landscape, and attack methodologies
Proficiency in security tools and technologies such as SIEM, EDR, IDS/IPS, firewalls, and vulnerability scanners
Excellent analytical, problem-solving, and decision-making skills
Effective communication and stakeholder management abilities
Certifications such as Comp TIA Security+, CEH (Certified Ethical Hacker), or equivalent are a plus.
Experience
Demonstrated experience in conducting security analysis, incident response, and vulnerability management in a complex environment
Hands-on experience with security tool optimization, security assessments, and penetration testing
Proven track record of incident response efforts and effectively managing security incidents from detection to resolution.
Career development This role offers a valuable opportunity for career growth and development in the field of cybersecurity. As you gain experience and proficiency, you will have the opportunity to progress into more specialized roles such as Senior Security Analyst, Incident Responder, or Security Engineer. Continued learning and professional certifications will be encouraged to enhance your skills and knowledge in the cybersecurity domain. Your Team Global cyber security team has the mission to enable Carmeuse digitalization strategy without security compromises. The cyber team is composed of regional senior security managers, cyber architects based around the globe with major presence in US, Belgium & Romania. Global cyber team is in charge of security design, delivery and operations to safeguard Carmeuse digital IT & OT footprint. Working with our cybersecurity team, you'll be at the forefront of innovation designed to strengthen our operations. Your Manager Victor Alexandrescu, 45 years old, is the leader of the team. With more than 20 years' experience, he brings a wealth of practical knowledge to the role. Victor joined Carmeuse 1 year ago. His management style is direct and based on trust and support. He focuses on efficiency and continuous improvement, always looking for ways to optimize processes and enhance team performance. He promotes a mindset centered on proactive problem-solving and achieving tangible results. Why Should You Join? We truly believe that where you work matters and, as a family business, we know what makes our employees happy!
Permanent contract
Flexible working hours
Home working policy
Competitive salary package and benefits
A lot of growing possibilities
A strong HR and training policy to develop your skills
Work life balance
#Hybrid The Recruitment Process: If you apply for this great position, you could go through these different steps:
Georges Mensah-Boateng, our Talent Acquisition Lead will analyze your Résumé and cover letter
A first "Teams" interview will be scheduled with Georges. You will take 2 personality questionnaires. He will want to know more about you, as a person and as a professional. He will assess your motivations and answer to your questions
You will have a second interview with Victor Alexandrescu (our Cybersecurity Delivery Manager) and Aurelie Mordant (our HRBP).
The last interview will take place with Stavros Georgakopoulos (our Cyber Security Architect), Rusty Gavin (our OT Cyber Security Lead) and Eugene Marchenko (our IT Security Director).