- Company Name
- COLAS DIGITAL SOLUTIONS
- Job Title
- SOC Officer H/F
- Job Description
-
Job title: SOC Officer (Gender-neutral)
Role Summary:
Operates within an international CSIRT to develop, manage, and enhance the Security Operations Center (SOC). Leads detection, incident response, and continuous improvement of security monitoring tools and processes. Coordinates managed security services and collaborates with cross‑functional teams across multiple countries.
Expectations:
- Deliver a robust SOC roadmap covering technology, strategy, and organization.
- Ensure seamless integration of detection and response capabilities.
- Maintain high coverage of evolving cyber threats through proactive rule and process updates.
- Support incident handling, investigations, and remediation as a Level‑3 (L3) analyst.
- Participate in CSIRT operations, threat intelligence generation, and security communities.
- Demonstrate leadership, communication, and partnership skills in an international environment.
Key Responsibilities:
1. Design and document SOC strategy, technology stack, and organizational structure.
2. Manage and coordinate managed detection services (SIEM, NDR, etc.), including scope, action plans, and production rollout.
3. Continuously assess detection coverage via threat analysis and risk assessment; identify and implement rule enhancements.
4. Plan, facilitate, and execute workshops and implementation activities with stakeholders and L2 managers.
5. Conduct L3 incident investigations, remediate threats, and produce post‑mortem documentation.
6. Contribute to CSIRT recurring activities: threat monitoring, forensic capitalisation, exercise participation, and CTI production.
7. Collaborate with the Cyber community to propose improvements that enhance overall security posture.
Required Skills:
- Proven expertise in incident detection, response, and SOC operations.
- Strong knowledge of SIEM, NDR, and other security monitoring tools.
- Understanding of network protocols, operating systems, and security best practices.
- Experience managing or transitioning to managed security services.
- Analytical problem‑solving and incident investigation capabilities.
- Excellent written and oral communication; ability to produce clear documentation.
- Teamplayer with strong stakeholder coordination skills.
- Curiosity, rigor, autonomy, and a pedagogical attitude toward cybersecurity concepts.
- Fluency in English (written and spoken); international project experience preferred.
Required Education & Certifications:
- Minimum 5‑year university degree (BAC+5) in Computer Science, Cybersecurity, or related field.
- Relevant cybersecurity certifications are advantageous but not mandatory (e.g., CISSP, GIAC, CISM, or NIST‑800‑53).
- Prior hands‑on experience with client‑side or MSSP‑based security monitoring environments.
Vélizy-villacoublay, France
On site
08-10-2025