V.I.E. Security Analyst
Responsibilities
Created in 2009, RESG/GTS (Global Technology Services) is one of the European financial sector's largest shared service centers for IT infrastructures. RESG/GTS currently supports over 85% of Société Générale’s IT infrastructures in France and around the world, including in Amer.
The Amer Infrastructure Security team (GTS/SEC) ensures that processes / measures implemented by GTS in IT security and operational risks are aligned with Group / GBIS ISS policies, GTS IT security standards and local regulations. Also, GTS/SEC includes a SOC (Security Operation Center) located in Montreal.
Automate:
· The SOC currently manually produce a lot of documentations, dashboards, KPI, KRI etc.; we are looking for a creative person to help us automate some of those tasks, so we can spend more time doing Incident Response and less on reporting
· The SOC does a lot of manual research online; we need to automate most of the information gathering in order to reduce our response time on our incident
· Automate Siem Use Case testing
· Other automation projects for Threat Hunting purposes or for testing correlation rules
Detect:
· Detection use cases (UC) needs to be created by the SOC to generates alerts when malicious activity occurs on our network; the SOC needs to stay up to date with state-of-the-art detection to catch the new emerging threats and leverage all the security deployed in our environment
Respond:
· Every time a new detection rule is put in place we need make sure it works as intended; someone needs to analyze the output of each alert and make sure they are relevant; once the alerts are high fidelity, we can send them to our level one third party
· Each alert created needs proper Incident Response Playbook (IRP); those IRP are built during the soaking period mentioned above
Mitigate:
· When security incident occurs, the SOC needs to contain the breach and eradicate the threat
The candidate will
· Propose new way to automate tedious aspect of the SOC analyst tasks
· Built scripts to retrieve valuable information on the internet that the SOC can leverage to
- Help detecting threats
- Help triaging the alerts
- Help classify the alerts
- Identity data leakage in public cloud (aka Github, Pastebin, Slideshare, etc.)
· Built UC to detect threats that could impact SG
· Built the documentation of those UC
· Built the IRP for all detection built
· Test the quality of the detection built by the team
· Support the level 1 third party SOC in investigation
· Follow established process to respond to confirmed incident
· Participate in post-mortem after each major security incident
Due to the VIE eligibility criteria a questionnaire will be provided. Please make sure to answer all the questions for an efficient analysis of your application.
Profile required
PLEASE NOTE that since this program is primarily an international development program, candidates cannot apply for a VIE assignment in their own country of citizenship.
To facilitate the examination of your application by our English-speaking managers, we thank you for applying in English.
Studies & experience:
· Graduate with a Master degree from Business/Engineering School or University
Language skills:
· Fluent in English (B2-C1)
Technical, operational & Soft skills:
· Proficient/Good command of MS Office
· Good communication and presentation skills
· Proficient in scripting language
· Basic knowledge of IT networks
· Knowledge of management of security event or SIEM tool is a plus
The VIE assignment in a nutshell
This VIE in Canada is to begin as soon as possible but you need to plan 3 months between your application date and the beginning of your VIE assignment. It will last 24 months.
In case a visa is necessary, please make sure your passport is valid up to 6 months after the end of the VIE contract to not delay your departure.
The VIE is a specific contract, under Business France’s eligibility criteria, opened to candidates under 28 and from the member states of the European Economic Space. For further information (including your financial indemnities), please see Mon VIE-VIA Business France.
We would like to draw your attention to the fact there that your VIE mission could potentially get postponed, depending on the evolution of the health crisis and subjects to the decision made by the Crisis and Support Centre of the Ministry of Europe and Foreign Affairs (MEAE). In addition, the selected candidate will only be paid upon confirmation from Business France and arrival in the country of assignment.
Why join us
As soon as you arrive, you will be integrated into our teams and will learn every day alongside our experts, who will support you in your tasks. Gradually, you will become more independent in your projects, making this experience a real career accelerator. You will also discover all the diversity of our businesses, in a sector that is constantly evolving and innovating.
At the end of your V.I.E. contract, various opportunities could be offered to you, in Canada and abroad.
Business insight
At Société Générale, we are convinced that people are drivers of change, and that the world of tomorrow will be shaped by all their initiatives, from the smallest to the most ambitious.
Whether you’re joining us for a period of months, years, or your entire career, together we can have a positive impact on the future. Creating, daring, innovating, and taking action are part of our DNA.
If you too want to be directly involved, grow in a stimulating and caring environment, feel useful on a daily basis and develop or strengthen your expertise, you will feel right at home with us!
Still hesitating?
You should know that our employees can dedicate several days per year to solidarity actions during their working hours, including sponsoring people struggling with their orientation or professional integration, participating in the financial education of young apprentices, and sharing their skills with charities. There are many ways to get involved.
Societe Generale is an equal opportunity employer, and we are proud to make diversity a strength for our company. We are committed to recognizing and promoting the talents and achievements of our employees and staff, regardless of race, religion, color, national origin, sex, disability, age, gender, sexual orientation, and any other characteristic or status protected under applicable law. We strive to write our postings as inclusively as possible. If, however, one of the two genders is used alone in this display, it designates persons of all gender identities.