Choosing Capgemini means choosing a company where you will be empowered to shape your career in the way you’d like, where you’ll be supported and inspired by a collaborative community of colleagues around the world, and where you’ll be able to reimagine what’s possible. Join us and help the world’s leading organizations unlock the value of technology and build a more sustainable, more inclusive world.
No matter what moment of life we are in, we are DIVERSE in age, gender, nationality, family… we have been certified in Diversity and as an ETHICAL company more than 9 years in a row!
It doesn't matter if you are living your growth stage in life, LEARNING and TRAINING at all hours or if you need to consolidate yourself and appreciate FLEXIBILITY, CONCILIATION and tax and social BENEFITS to combine your personal and professional life.
What really matters is that you can feel that you are WHERE YOU SHOULD BE to get the future you want.
What will you do in the project? Cybersecurity Engineer L2 with Linux.
The Level 2 (L2) Security Analyst plays a crucial role in the cybersecurity operations centre by dealing with incidents of greater complexity and sophistication. His primary responsibility is to conduct advanced threat analysis, using detailed investigative and forensic techniques to understand the root cause and extent of incidents. This professional coordinate the response to critical events, escalating problems to specialized teams and ensuring efficient management of the incident from detection to resolution.
To feel comfortable in the position, you need to be able to get along well with these knowledge and responsibilities:
Key Responsibilities
- Distributed File System: QTrees and security groups creation along with assignment to SVMs, Shares, etc
- Advanced Analysis: Perform deeper and more detailed analysis of incidents, evaluating sophistication and potential impact compared to level 1.
- Specialized Escalation: Handle incidents of greater complexity, escalating to higher levels and coordinating with specialized teams when necessary.
- Forensic Investigation: Conduct forensic investigations to determine the root cause of incidents and collect evidence for possible legal action.
- Signature and Rule Development: Create and update signatures, rules, and behavioural profiles in detection tools to improve accuracy and effectiveness.
- Technical Advice: Provide technical advice to level 1 analysts, helping in the understanding and resolution of more complex incidents.
- Tool Optimization: Collaborate in the improvement and optimization of security tools, proposing adjustments and updates to keep up with threats.
- Critical Incident Management: Coordinate the response to critical incidents, ensuring efficient execution of mitigation and recovery plans.
- Review of Security Policies: Evaluate and update security policies and procedures, ensuring their alignment with best practices and regulations.