Talan is an international consulting group in innovation and transformation through technology. For 20 years, Talan has been advising companies and administrations. The group supports them and implements their transformation and innovation projects internationally.
Present on five continents, the group achieved a turnover of 600 million euros in 2023 for more than 6,000 consultants and aims to exceed the one billion € turnover mark by 2025. The group puts innovation at the heart of its development and intervenes in areas related to the technological changes of large groups, such as Artificial Intelligence, Data Intelligence, Web3, Metaverse, Blockchain or IoT.
By placing the “humanistic practice of technology” at the center of its strategy, the Talan Group is convinced that it is by being at the service of humans that technology multiplies its potential for society.
Job Description
Are you looking to join a company at the forefront of innovation and transformation? Look no further than Talan! We are seeking a talented CSIRT Consultant to join our team and work on IT projects.
Role and responsibilities
- Incident Detection and Response: Identify, detect, and respond to various security incidents, including but not limited to DoS attacks, malware, phishing, and web attacks. Take immediate action to mitigate and resolve security incidents as they occur.
- Security Incident Management: Lead and drive end-to-end security incident response and resolution activities. Coordinate with IT Operations and other teams to ensure timely deployment of preventive and detective actions in response to security threats and intelligence alerts.
- Forensics and Investigation: Support and perform forensic investigations to respond to security incidents. Prepare detailed incident post-mortem reports, including root cause analysis, remediation steps, and lessons learned.
- Threat Intelligence and Coordination: Respond to security threats and intelligence alerts from Group CERT, regional regulators, and authorized threat intelligence groups. Manage the coordination, communication, and deployment of action plans for threat advisories and lessons learned from security incidents.
- Policy and Playbook Development: Develop, update, and periodically review the Incident Response Plan (IRP) and playbooks to ensure relevance and effectiveness. Maintain up-to-date information on all stakeholders involved in incident response.
- Collaboration and Support: Collaborate with CSIRT teams across different geographies on security matters. Act as a backup to manage security incidents and other security activities as needed.
- Security Review and Vulnerability Management: Conduct periodic reviews of network (switches, routers, firewalls, IPS, etc.) and system (Windows, Linux, etc.) security measures to support vulnerability management. Ensure the vulnerability remediation process is followed and meets the expected level of performance.
- Compliance and Training: Complete all mandatory training to maintain and enhance competence. Comply with all legal, regulatory, and internal compliance requirements, including financial security and fraud prevention measures.
- Incident Exercises and Preparedness: Organize and conduct annual "table-top incidents" exercises with management to test the effectiveness of incident response strategies.
- Severe Incident Coordination:In the event of a severe security incident, coordinate investigation, mitigation, and remediation operations with IT operations and application teams.
Qualifications
- Bachelor's degree in Computer Science, Information Security, or a related field.
- Prior experience in a security operations or incident response role.
- Strong knowledge of security threats, vulnerabilities, and attack vectors.
- Experience with security technologies, including firewalls, intrusion detection systems, antivirus software, and SIEM (Security Information and Event Management) tools.
- Proven experience in conducting forensic investigations and preparing incident reports.
- Knowledge of regulatory requirements related to cybersecurity and data protection.
- Strong analytical and problem-solving skills with attention to detail.
- Excellent communication and coordination skills, with the ability to work effectively under pressure.
- Relevant certifications such as CISSP, CISM, GIAC, CEH, or equivalent are preferred
Preferred Skills:
- Experience in coordinating with external regulatory bodies and threat intelligence groups.
- Familiarity with security frameworks such as NIST, ISO 27001, and CIS Controls.
- Knowledge of scripting and automation tools for incident response (Python, PowerShell, etc.).
Company’s Benefits
At Talan, we invest in our employees' well-being and empower them with benefits, including:
- 💵 The salary range for this role is US$70,000 - US$140,000
- 💸401(k) retirement plan with company matching
- 🌴15 days of paid vacation per year at hire and up to 27 according to seniority (annual untaken vacation days are cashed out)
- 📴8 paid holidays + 5 sick days + 2 personal days per year
- ❤️🩹Company health, dental, and vision insurance plans + FSA
- 🦺Voluntary STD and LTD
- 🚍 Commuter/transit benefits
All your information will be kept confidential according to EEO guidelines.
