Incident Responder / Senior Security Operations Center Analyst
Job Description
<p><strong>About Five9s</strong></p><p><br></p><p>Traditional Managed Security Service Providers (MSSPs) have proven largely ineffective at detecting and preventing advanced cyber-attacks, not mentionning the cost of security tools licenses and services. </p><p>At Five Nines we first think security but also usability, best practice, efficiency and Cloud nativen with a focus on avoiding false positives. </p><p>Based on the way our NextGenSoc detects and responds to attacks, our unique approach gives the highest level of detection and response capability most organizations struggle to obtain beyond prevention. We know that advanced attackers take advantage of the rules used by most prevention solutions to easily avoid detection, so that our solution is devoid of rules and focuses only and the intersection of (predictive) intelligence and behavior anomaly (something different from the norm) to allow our cyber experts to quickly detect and respond to threats.</p><p><br></p><p><strong>About the role </strong></p><p><br></p><p>Five9s is expanding. To achieve our ambition, we are offering you the opportunity to join us as an Incident Responder / Senior SOC analyst. </p><p>From log analysis to project management going through cloud security architecture and DevOps methodologies, you’ll work with a bunch of experts and seasoned security professionals, in order to contribute to the delivery of our missions worldwide.</p><p><br></p><p><strong>Your missions</strong></p><p><br></p><p>In a transversal team, you report to the Chief Technical Officer (CTO), perform risk analysis, cyberattack scenarios defintion, playbook design, and of course all detection and incident response actions. </p><p>In a team of enthusiastic people, you are expected to bring your own epxerience as well as you’ll benefit from the views of others. </p><p><br></p><p>Work in the Next-Gen SOC </p><ul><li>Challenge the cyber-attack detection use cases </li><li><strong>Handle alerts & security incidents </strong></li><li>Improve Five9s’ maturity regarding its security detection & response methods & tools </li><li><span>Challenge the deployment methodologies & tools</span></li><li><strong>Handle deployment projects from A to Z on the technical aspect</strong></li></ul><p><br></p><p>Contribute to Five9s’ internal cybersecurity </p><ul><li>Assess risks and ensure ISO 27001 requirements are met </li><li>Strengthen the integration of security into the development lifecycle </li></ul><p><br></p><p>Build on existing Five9s’ services offer </p><ul><li>Produce technical specifications and associated operating procedures </li><li>You will be encouraged to work on R&D projects and submit papers on an annual basis </li></ul><p><br></p><p><strong>Required experience </strong></p><p><br></p><p>Minimum requirements </p><ul><li>Excellent mindset. Self-righteousness & individualism are bannished at Five9s, whereas helfulness & humility are favoured. </li><li>Highest motivation: you’ll be expected to give the best of yourself and work accordingly </li><li>5 years working as a SOC analyst or an CERT incident responder</li></ul><p><br></p><p>Preferred requirements</p><ul><li>Offensive security skills (provide your root-me or HTB rank or your OSCP certification) </li><li>Good knowledge of automation scripting (for instance with Powershell or Bash), and proven experience in at least a programming language (C++, Python, Go, Java, …) </li></ul><p><br></p><p><strong>This role is made for you if, you have/are </strong></p><ul><li><strong>A taste for sharing</strong>, leading, by making her/his colleagues aware of good security practices and by supporting her/his proposals with good examples </li><li>You know how to lead projects and also qualify, prioritize issues, and handle them in a diplomatic, pragmatic way. </li><li>Inventiveness and demanding, you like to look for security flaws in software. You may have already participated in bug bounty programs yourself </li></ul><p><br></p><p><strong>Work-life at Five9s</strong></p><p><br></p><ul><li>A stimulating workplace, where each person brings ideas and innovates. </li><li>Trainings: Contrary to numerous firms, this is not a joke, we’ll get you certified on best-of-breed security technologies, like CrowdStrike or Splunk. </li><li>Our goal is to ensure your personal and professional development. We make available benefits and perk to make your life easier, for instance nursery or remote working. </li></ul><p><br></p><p><strong>Benefits </strong></p><p><br></p><p>Competitive and evolutive salary package – Considerable training budget – On-site, hybrid remote work are available </p><p>We are ready to discuss which benefit will make your life easier. </p><p><br></p><p><strong>Recruitment process </strong></p><p><br></p><p>Our Recruitment process:</p><ul><li>Qualification call to understand your background, aspirations and to answer your first questions</li><li>Technical tests & interview to discuss your technical and functional experience, the role, and company in details</li><li>Interview with the HR director then our country Manager to elaborate on your motivation and projection at Five Nines, as well as transversal technical subjects and discuss your understanding of Five9s’ core business</li></ul>
