Company Description
Wepoint is the architect of major transformations for businesses and public sector organizations.
We support our clients from strategy through technological implementation, always striving to think beyond the obvious and to act within the framework of Economic, Social, Environmental, and Technological Responsibility (RESET). Our goal is to create new ways of working, new economic models, and smarter environments.
In nearly 20 years, we have become one of the key players in digital transformation, employing 3,500 people across Europe, Tunisia, North America, and the Asia-Pacific region.
What We Are Looking For
COURAGE – AUTHENTICITY – OPENNESS – COMMITMENT – ELEGANCE
Do these words resonate with you? They are our company values.
At Wepoint, we are looking for committed talents who are ready to share their expertise within open and collaborative teams, and who are not afraid to take initiative. We also value people who are able to challenge themselves and continuously improve.
At the heart of relationships at Wepoint are authenticity and the constant pursuit of excellence for our clients — this is what we expect from our future colleagues.
Description du poste
Le(la) Spécialiste Sécurité de Production – Équipe Purple fournit une expertise en cybersécurité au Centre des opérations de sécurité (SOC) 24/7.
L’objectif principal du poste est de :
Développer, mettre en œuvre et améliorer en continu les cas d’usage de sécurité et les règles de corrélation;
Détecter, prévenir et répondre aux cybermenaces visant les infrastructures du groupe;
Apporter un soutien critique au programme global de cybersécurité via des partenariats internes et externes.
Le poste implique également :
Participation au Threat Hunting;
Contribution aux enquêtes de cybersécurité;
Renforcement des capacités SOC en tant que première ligne de défense.
Responsabilités
Analyser et assurer le suivi des logs de sécurité provenant de multiples systèmes;
Développer et valider des cas d’usage de sécurité;
Concevoir et faire évoluer les capacités de Threat Hunting;
Investiguer, documenter et rapporter les incidents de sécurité et tendances émergentes;
Identifier des adversaires potentiels via des activités de chasse aux menaces;
Participer à des exercices avec les équipes Purple pour détecter et corriger les écarts;
Fournir du support et répondre à toute question liée à la sécurité;
Travailler de manière autonome avec supervision limitée;
Collaborer avec d’autres analystes et équipes;
Appliquer les procédures d’incident et effectuer le triage (analyse, validation, mitigation);
Escalader les incidents critiques vers les niveaux supérieurs;
Proposer des améliorations opérationnelles;
Maintenir une connaissance des architectures, outils et menaces;
Améliorer en continu les services : correction des lacunes, tuning des faux positifs, recommandations de nouveaux cas d’usage ou contre-mesures.
Agir comme expert (SME) dans au moins un domaine de cybersécurité (ex : malware, scripting);
Maintenir une veille technologique et améliorer ses compétences;
Respecter les politiques internes et normes de sécurité;
Collaborer avec les équipes de sécurité globales (EMEA, APAC, AMER);
Participer ponctuellement à des projets.
Qualifications
Minimum 5 ans d’expérience (niveau 2) en gestion des incidents de sécurité IT;
Solide culture cybersécurité;
Connaissance des environnements : réseaux, infrastructures, UNIX / Windows, bases de données,outils de déploiement;
Bonne maîtrise des outils de sécurité : SIEM, EDR, IDS/IPS, pare-feux réseau et hôtes, DLP;
Connaissance approfondie : analyse de logs, réponse aux incidents, analyse des causes;
Compétences techniques :scripting (Shell, Python, PowerShell, Java, SQL, Ansible);
Bonne compréhension : réseaux (OSI, TCP/IP, DNS, HTTP/HTTPS, SMTP), méthodes d’attaque (phishing, scans, web attacks, DDoS, mouvements latéraux);
Certifications (atout) : GCFA, GCIH, OSCP ou équivalent.
Seuls les candidats légalement autorisés à travailler pour tout employeur au Canada seront considérés.
Wepoint Benefits
Minimum of 3 weeks of vacation starting from the first year;
Comprehensive group insurance with a generous employer contribution;
Employer contribution to a group RRSP;
Full remote work flexibility: Hybrid, Remote, or On-site;
A warm, bright, and welcoming office offering fresh fruit, coffee, beverages, occasional meals, etc.;
Annual IT equipment budget;
A balanced work environment with flexible working hours;
Career development: training and certifications, online or in-person learning, Wepoint Academy, etc.;
An international community of experts ready to share their knowledge;
A company culture focused on individuals’ needs and their belonging to a strong community.
#tech&security
Skills Required
- Minimum 5 years of experience in IT security incident management
- Strong cybersecurity culture
- Knowledge of networking environments, UNIX/Windows, databases, deployment tools
- Proficiency in security tools: SIEM, EDR, IDS/IPS, network firewalls, DLP
- Deep knowledge in log analysis, incident response, root cause analysis
- Technical skills in scripting (Shell, Python, PowerShell, Java, SQL, Ansible)
- Good understanding of networks, attack methods
- Certifications (optional): GCFA, GCIH, OSCP or equivalent
What We Do
In our world of data, design, platforms and supercollectives, we are architects of the transformation of companies and the modernization of public administrations, from strategic vision to operational implementation. Bold, authentic, open, elegant and committed architects. The organization of our expertises into open communities enables us to bring a unique value proposition to our clients with our ability to lead end-to-end projects, from strategy to implementation, relying on cutting edge tech and business skills. By being audacious and going beyond the obvious, we want to help each of our clients to design, in concrete terms, a path to the future. We want to create new ways of working, new business models and new places. Every day, we get up in the morning to design a new world. This is what defines our raison d'être - Design a new world - and our catchphrase: Beyond the obvious. Today, onepoint has 2300 employees across 14 offices over the world : Today, onepoint has 2300 employees across 14 offices over the world : Paris, Bordeaux, Toulouse, Nantes, Lyon, Amsterdam, New-York, Brussels, Luxembourg, Melbourne, Sydney, Singapore, Montreal, Tunis, Zele.
.jpg)
