Details of the offer for CSIRT Specialist H/F about forensics at adsn in Venelles (13770)

Historical partner of notaries, ADSN puts its expertise and technological excellence at the service of authenticity. All of the products and services developed by ADSN are dedicated to public officer activities. Its objective is to provide the same level of service to all customers, throughout France. Thanks to its state-of-the-art technology, constantly evolving, ADSN is the guarantor of the security required to serve the authenticity, intrinsic to the profession of notary. ADSN tools and services: •Real key • Office messaging •Tools related to the notary's mission as a public officer (Portal for collecting consent, Télé@ctes, civil status, criminal record, FCDDV, Pacsen, real estate reference databases) •Tools related to day-to-day simplification: AAE, AAED, Micen Join the Operational Security Department, for this permanent job creation Within rich and multiple environments (regular, cloud) and certified (ISO 27001 and eIDAS), attached to the Operational Security Manager (SECOPS), you are in charge of preventing and reacting in the event of incidents. computer security. You ensure a security watch to know the state of the threat and assess the specific vulnerabilities of the organization. 1/ Conduct and carry out technical audits to guarantee the level of IS security: • Participate in the definition of audit plans within the organization's IS •Prepare, execute and document security audits ensuring compliance with the regulatory framework • Collect the elements to be audited, and the architectural elements of the systems, carry out the configuration and architecture audits •Perform code audits • Define attack scenarios and penetration tests • Write reports including an analysis of the vulnerabilities encountered •Assess security risks and business impacts • Define the recommendations to remedy the risks •Produce compliance security level dashboards 2/ Carry out the cyber threat analysis in order to allow the organization to adjust its cyber threat strategy: •Qualify the threats •Analyze attack techniques and known operating methods •Participate in the definition of security requirements / recommendations for technical teams • Write alerts and analysis reports to better understand the threats to the environment •Produce analysis documents to feed the detection tools •Update knowledge bases •Share, during a cybersecurity incident or crisis, the state of understanding of the threat and the likely assumptions regarding the evolution of the incident or crisisManage and optimize the management of the CTI within CSIRTSupporting large-scale projects (ISS expertise) 3/ Analyze and deal with security incidents (Forensic): • Monitor new vulnerabilities, new technologies and attack methods relating to the various components of the information system • Maintain and develop investigation tools • Collect technical information from a large set of information systems, carry out the search for indicators of compromise • Analyze the technical surveys carried out in order to identify the modus operandi and the attacker's objective and to qualify the extent of the compromise • Write investigation reports • Expertise of SOC/CERT security incidents • Create and improve incident response sheets to build the LID playbook • Participate as a security expert during crises • Produce activity security indicators and dashboards Technical background: • Certifications: SANS, Forensic, PASSI, CISSP • Technologies: Splunk, varonis, edr, xdr, IDS/IPS, bastion, cloud M365, java, docker, python… • Security standards and procedures, SSI tools and technologies: firewall, anti-rivus, cryptography, authentication servers, intrusion tests, PKI, URL filtering, etc. Your profile : • Beyond your higher education (Bac+3/5 or equivalent in the field of cyber security or a related discipline), you have acquired experience of at least 4/5 years in a similar function. • You master the methodologies and analysis and investigation tools that make it possible to detect, understand and limit the impacts of a compromise of information systems • You develop monitoring and research capabilities on the threat and contribute to sharing, within the ecosystem, the information that makes it possible to reduce it. • A critical mind and a will to succeed • Ability to interact with the various actors (business and technical) The activity is part of teamwork, where the sharing of information, constructive questioning and everyone's participation play a major role. • Proficiency in English in a professional environment • Writing skills and good interpersonal skills Why join us: Cybersecurity at ADSN is above all a team that is being built, on the basis of a legitimacy acquired by a constant effort on competence and relevance (whether technological or not). It is a collective, strong, committed in which everyone can develop their skills, and a rich perspective on an exciting, strategic and complex subject. We are the recognized player in the digitization of the notarial profession, technological expertise at the service of the sustainability and autonomy of notaries. Our brand new 7000 m2 site awaits you: numerous facilities are available to employees (25 meeting rooms, 1 work café, 1 cafeteria, 1 outdoor terrace, etc. The little extras: Disability policy – ​​cooptation bonus – Important training – teleworking agreement – ​​1% accommodation – TR Apétiz card – complementary health insurance – professional equality index at 89/100…easy parking…and many others… Further information : Fixed compensation over 13 months + profit-sharing and profit-sharing bonus + mutual insurance + TR +… You share the values ​​of the Group: professional conscience, openness, cohesion and humility Our recruitment process: • Once your application has been selected, the Recruitment Center will contact you for an initial telephone conversation. • If after this step, your application meets the given criteria, you will definitely enter the heart of the process: the interview. • You will be required to meet your Line Manager, as well as an employee from the recruitment department. You will also take tests during the assessment process. 2 Positions based in Venelles on permanent contracts