Information Security Engineer

We are looking for an Information Security Engineer for one of our partner, a company specialized in automotive technologies, solutions and services.

Requirements:

• Bachelor’s degree in Security Management; Compliance or Computer Science or a comparable course of studies;
• 2+ years of experience in IT Security, with a focus on Incident Response and SOC;
• Deep understanding of security systems, firewalls, authentication systems, log management, content filtering, network security and networking technologies;
• Proven knowledge in the following security disciplines: advanced threats, information security incident detection and response, forensic investigative practices;
• Has worked with and managed at least one of the following technologies: SIEM, AV, NIDS/NIPS, ETDR, DLP, FW, HIPS/HIDS;
• Experience with rule-driven and analysis-driven network platforms;
• Relevant experience in an international environment;
• Experience in developing, collecting and analyzing threat intelligence is a plus;
• Experience in cyber intelligence analytic methodologies such as Kill Chain, threat modeling or threat hunting is a plus;
• Fluent in English, written and verbal.

Responsibilities:

• On a day-to-day basis respond to, remediate, and coordinate incident response actions with other stakeholders, both internal and external;
• Act as main point of escalation for Tier 2 Analysts and the Business;
• Creates scripts and necessary reports to prevent disruption or unavailability of information assets and assess the impact;
• Define, design, create, test, implement and modify information assets that have software as the main component in order to improve the security posture;
• Develop and maintain technical runbooks;
• Conduct in-depth analysis of suspicious activities and attempted attacks, during and post incident through and not limited to the analysis of malware, packets, alerts and logs for signs of malicious activity;
• Assist in support of formal investigations and/or inquiries to resolve insider threat related matters, acceptable use policy violations;
• Identifies areas for improvement in internal processes along with possible solutions;
• Work with the Information Security Operations Lead to define and document standard operating procedures for security incident handling, malware analysis, vulnerability management etc;