Freelance S Security Administrators

Client of Novancy One

Freelance S Security Administrators

Context:

On behalf of our client, we are looking for a Freelance Security Administrator who ensures the maintenance of cybersecurity tools in operational condition, actively contributes to the management of vulnerabilities, participates in the processing of incidents, and manages security requests within the framework of the RUN (current operation).

Main missions:

Administration of security solutions

• Install, configure, update and monitor security tools (EDR, AV, BASTION, MFA, FIM, Centralization of logs)
• Ensure their maintenance in operational condition as well as the management of access, security policies and associated logs.

Vulnerability Management

• Administer and operate vulnerability detection and scanning tools
• Track detection campaigns, analyze reports
• Maintain dashboards, track vulnerability backlog
• Steering the remediation plans in coordination with the business and technical teams

Request Management (RUN Activity)

• Handle change and support requests related to security solutions
• Collaborate with the various Service Lines to implement requests
• Comply with validation procedures (ticket management, approvals, traceability)

Execution and Evaluation of NIST Controls

• Development of existing controls on the management of the
• Carrying out remediation to ensure compliance with safety requirements/level and risk reduction

Incident management support

• Provide technical support during security incidents
• Participate in the analysis (via the tools: EDR, AV, logs, etc.)
• Monitor remediation actions (containment, cleaning, curing)
• Contribute to the post-mortem and continuous improvement

Documentation & continuous improvement

• Write RUN operating manuals and procedures
• Participate in technical audits and tool compliance
• Monitor cyber security tools and emerging threats

Skills required:

• Bac +3 Bac +5 in computer science, cyber security or systems administration
• Experience: 2 5 years in operational security or infrastructure
• Certifications appr cies: CISSP, CEH, Qualys, CompTIA Security+
• Good command of the following solutions (at least 3 4):
• • Defender for Endpoint, Symantec Antivirus, Wallix, Cimtrak
  • SIEM: Splunk, Elastic Stack, QRadar
  • Vulnerability Scanners : Qualys
  • Solid security background: DLP, Proxy, NAC, WAF,
• Good basics in system administration (Linux, Windows) and network (IP, DNS, VLAN)
• Ticket management (e.g., ServiceNow, GLPI)
• Scripting skills: Python and/or PowerShell (wish)
• Good knowledge of standards and references: ISO/IEC 27001, NIST, GDPR, etc.
• Organization, rigor, sense of service
• Analytical skills and ability to manage priorities
• Interpersonal skills to change with technical and business teams
• Proactivity and autonomy
• Fluent French
• Technical English (read/crit)