Main Duties
- Perform initial analysis of logs and network traffic.
- Determine alert severity and escalate when required.
- Collate information and present findings in a clear, structured format.
- Provide remediation recommendations and first-line response to incidents.
- Conduct research and assessments of security events.
- Analyze events from firewalls, intrusion detection systems, antivirus, and other network sensors.
- Use advanced toolsets (log collection, intrusion detection, packet capture, vulnerability assessment, network devices) to enhance investigations.
- Support end-to-end incident handling processes.
- Contribute to threat intelligence sharing and block list management.
- Propose optimizations and enhancements to maintain and improve security posture.
Required Profile
- University degree in IT or a technical field related to information technology, with at least 1 year of cybersecurity experience.
- Or, if lacking a degree, at least 3 years of relevant cybersecurity experience.
- Strong understanding of computer and communications security principles.
- Knowledge of TCP/IP networking, Windows and Linux operating systems.
- Broad understanding of common network security threats and mitigation techniques.
-
Experience with:
- Security Information and Event Management (SIEM) tools – e.g., Splunk
- Network-based Intrusion Detection Systems (NIDS) – e.g., FirePower, Palo Alto Threat Prevention
- Log analysis from multiple sources: firewalls, proxies, routers, DNS, and other security appliances
- Network traffic capture and analysis using Wireshark
-
Skills:
- Logical and structured approach to complex security investigations
- Ability to analyze large, complex datasets
- Good written and verbal communication skills
- Ability to work independently and as part of a team
-
Desirable Qualifications:
- Leading cybersecurity certifications – e.g., GCIA, GNFA, GCIH
- Experience in CIRT/CERT environments
- Proficiency in intrusion/incident detection and handling
- Experience with full packet capture systems, EDR tools, and computer forensics
- Knowledge of military communication systems and networks
Security Clearance: Required – NATO Secret
Die Möglichkeiten sind zahlreich. Von der Entwicklung reiner Anwendungen bis zur IT Infrastrukturmanagement inkl. Konzeption, Architektur und Anforderungen Analyse.
Obwohl ABAKUS IT-SOLUTIONS offen für Technologien ist, die von unseren Kunden eingesetzt werden, ist das Unternehmen bestrebt, hauptsächlich, aber nicht nur Berater, die Folgendes beherrschen: Windows- und Linux-Server, Netzwerke, (JAVA, SAP, .NET,...) sowie hochspezialisierte Experten, z.B. im Bereich Cybersicherheit oder in Content Management Systemen (CMS) (SharePoint, Drupal, WebLogic...).
In in Bezug auf nicht-technische Kompetenzen stellt ABAKUS IT-SOLUTIONS dynamische Personen ein, die in die Welt, interessiert an Innovation und mit einem ausgeprägten Gespür für Kunden Beziehung.
Ein sehr Gute Englischkenntnisse sind unerlässlich, die Fähigkeit, Französisch, Deutsch oder Niederländisch zu sprechen ist eine Bereicherung.
Sogar Obwohl die meisten unserer Positionen mindestens 3 Jahre Erfahrung erfordern, sind einige offen für Neueinsteiger.
