Listing Description
- 6 years of experience in the IT Security field (Blue teamer roles preferred)
- Proven hands-on experience on offensive and/or defensive IT security
- Ability to provide SOC/CSIRT teams with network traffic and network flow data
- Knowledge of the latest attacker Techniques Tactics & Procedures and the potential detection methods
- Knowledge of operating systems’ and commonly used software’s attack surface
- Ability to collect accurate, precise and (near) real-time information and configure correlation of logs/alerts from a multitude of heterogeneous devices
- Proficiency in using and configuring security technology such as (but not limited to): Windows Event Forwarding, Sysmon, Syslog, Security Onion, Suricata, Bro, Snort, ELK stack & Splunk (both for security analytics)
-Capable in continuous (and threat intelligence-based) security monitoring and adversary emulation
- Ability to baseline environments and perform (complex) queries to detect abnormalities/deviations
- Familiarity with fine-tuning local and remote security mechanisms (AppLocker, Firewall, Windows Defender Advanced Threat Detection, A/V, IDS, EDR, etc.)
- Scripting capabilities and familiarity with PowerShell and WMI for collecting endpoint data/events
- Ability to setup/configure protocol and user behavior analytics
Desired soft skills
- Ability to clearly and effectively report to upper management or clients
- Ability to articulate, edit and build educational contents
- Team working abilities, both as team member and as team leader
- Ability to effectively prioritize and manage multiple concurrent projects
- Enthusiastic, knowledge-hungry learner
-Bonus Skills and Experience
Participation to communities, past presentations to conferences and cooperation with open source projects will give the candidate higher chances during selection.
The following certifications will provide the candidate with better chances during the selection:
eCPPT
eCPTX
eWPT
eWDP
eWPTX
eMAPT
eCRE
eNDP- Research new IT Security frontiers
- Apply IT Security research to company’s training contents and virtual labs
- Deliver presentations and webinars to an online or live audience
- Take part to and represent eLearnSecurity to IT Security events
Listing Details
- Citizenship: No Requirements
- Incentives: Both
- Education: No Requirements
- Travel: No Travel
- Telework: Full Telecommute