About us : It’s a great time to be part of the SES teamWe are the world’s leading satellite operator with over 70satellites in two different orbits, Geostationary Orbit (GEO) andMedium Earth Orbit (MEO).
We provide a diverse range of customerswith global video distribution and data connectivity servicesthrough two business units : SES Video and SES Networks.
Our globalteam works collaboratively to make a significant, and oftenlife-changing difference in the world. As part of our team, youwill play an integral part in delivering on our vision.
At SES, weconnect and enable broadcast, telecom, corporate and governmentcustomers, and enrich the lives of billions of people worldwide.
Analyst, Cyber Security Monitoring and Incident Response Luxembourg- Betzdorf ROLE DESCRIPTION SUMMARY The position isresponsible for monitoring and analysing security events frommultiple sources and for managing security incidents to ensure acoordinated, timely and effective response to security incidents.
The incumbent will support key security management processes byproviding intelligence from security incidents and identifiedvulnerabilities and threats.
Running and managing the continuous onboarding of new log sources Incident response Support the management of securityincidents to ensure a coordinated, timely and effective response tosecurity incidents.
Collect and analyze security information fromdifferent information resources to identify relevant threats andvulnerabilities and disseminate synthesized intelligenceinformation within the organization Support and perform technicalanalyses of security threats and incidents, including malwareanalysis, network and system forensic analyses Record and documentsecurity incidents, (e.
g. analysis results, the timeline of eventsand incident response activities) Vulnerability ManagementIdentify and communicate risk and exposure by running and managingthe vulnerability management process Follow-up with system ownerson discovered vulnerabilities Identify and disseminate newvulnerabilities Other tasks Automate resource-intensivesecurity monitoring, incident response and vulnerability managementtasks Create and maintain policies, processes, procedures for allcyber security monitoring functions.
Maintain and tune cybersecurity operation infrastructure and tools (including but notlimited to SIEM platform regarding log sources onboarding, logparsing, rules / alerts / reports definition.
Provide synthesizedintelligence including statistics and KPIs from cyber securityoperation process to support key security management processesContinuously improve SES’s information security posture bycontributing to the definition, implementation of the informationsecurity framework.
On-call duty as required COMPETENCIESAutonomous Innovative mind Very good analytical and problem solvingskills Stress resistant and able to manage multiple incidents andtasks at the same time Good written and verbal communication skillsExcellent team player Ability to effectively interact with allorganization stakeholders QUALIFICATIONS & EXPERIENCE MinimumBachelor Degree in Computer Science and minimum of 2 year industryrelated experience in computer security and incident response Goodexperience in security monitoring (SIEM) including analyzing andtriaging of security events from various sources Experiencein responding to security incidents Knowledge of and hands-onexperience with state of the art incident response and forensicstools, techniques and tactics Experienced in capturing memory, diskimages and network traffic and analyzing them for indicators ofcompromise Good programming and scripting skills in differentprogramming / scripting languages would be an advantage Goodunderstanding of the tools and tactics used by different threatagents Knowledge of computer forensics, security vulnerabilitiesand exploits Knowledge in system security, application security andnetwork security Knowledge of security technologies, such asAntivirus, Network and Host Intrusion Detection Systems, WebProxy / Content Filtering, Authentication technologies, SecurityInformation and Event Management Experience with a top tier SIEMsolution (e.
g., HP Arcsight, IBM QRadar, Splunk for Security,EMC / RSA Security Analytics) is a plus Relevant securitycertifications (e.
g., GCIH, GCFE, GCFA, GREM, GCIA) and productcertifications are a plus Experience in malware analysis andreverse engineering would be an advantage Fluency in English, anyother language is considered as an asset Willingness to travelinternationally OTHER KEY REQUIREMENTS / COMMENTS NATO / EU SECRETclearances are considered a strong asset.
Candidate must be willingto undergo a security clearance procedure as this position mightrequire holding security clearance What’s in it for you?
Inaddition to a competitive salary and benefits package, we offer youa truly global opportunity in an exciting industry and all thesupport you’ll need for both your professional and personaldevelopment.
But most of all, we offer a truly unique opportunityto play your part in making a difference for those who need itmost. We strive to uphold honesty, transparency and courage ineverything we do.
We’re proud to belong to the SES team andcollaborate towards success. Good to know For moreinformation on SES, click here.
SES is an Equal OpportunityEmployer and welcomes diversity!