About Talan      

Are you passionate about digital transformations, data, IoT or AI and are you looking to join a dynamic and ambitious team?

Don’t hesitate and join Talan!

For the last 20 years, Talan has advised Companies in the Finance and Luxury Goods Industries. Talan has helped its clients transform their businesses and deploy innovative projects globally. Talan is a global company present on five continents.

Today, Talan has more than 4,000 consultants and aims to exceed $1B in revenue by 2024.

Talan leverages innovation and operates in areas related to technological changes such as Big Data, Cryptocurrency, and Artificial Intelligence.

We rely on both technological leverage and the strength of our DNA based on collective intelligence, agility, and a taste for entrepreneurship.

We are looking for a CSIRT Cyber Security Analyst to support our client Information Security team within their IT organization. Our client is setting up a follow-the-sun support model to provide better Incident Response management to the business. As part of this
expansion, we are looking to engage a US-based resource to carry on this function for the Americas region, who will work closely with our client CISO team in Paris. The consultant will start in Paris and after a few months spent with the global team, will be located in our client NYC offices, and will partner with  Americas local IT team to deliver support to the Global CSIRT (Computer Security Incident Response Team) while improving our client’s overall cybersecurity posture. For this position we will sponsor a visa E2, if need it.

Responsibilities

Essential duties and responsibilities include the following. Other duties may be assigned. The selected candidate will join the CSIRT (Computer Security Incident Response Team), in a role of a Cyber Security Analyst. The CSIRT is in charge of detecting and responding to computer security incidents, worldwide.

The role will mainly focus on analysis, evaluation, and handling security incidents from different
sources (EDR, SIEM, AV, Firewalls, etc). Additional responsibilities will include:

• Develop and implement new detection use cases (correlation rules) to continuously improve the detection capabilities of CSIRT
• Develop new modules (in Python) and workflows on SOAR (Security Orchestration Automation & Response) to automate the contextualization, enrichment, analysis, and response to security alerts and incidents
• Qualify, propose, and lead action plans to address critical vulnerabilities (Cyber Security watch)
• Target reduction of the attack surface by blocking TTPs or IOCs on the various IS security platforms (AV/EPP, Web Proxy, Email Gateway, etc.)

Required Skills:

• In-depth knowledge of each phase of the Incident Response life cycle
• Expertise in Operating Systems operations and artifacts
• Understanding of Enterprise Network Architectures to include routing/switching, common protocols (DHCP, DNS, HTTP, etc), and devices (Firewalls, Proxies, Load Balancers, VPN, etc)
• Ability to:
  • recognize suspicious activity/events, common attacker TTPs, perform logical analysis and research to determine root cause and scope of Incidents
  • Drive implementation and improvement of new tools, capabilities, frameworks, and methodologies2
  • Instill and reinforce industry best practices in the domains of incident response, cybersecurity, analysis, case and knowledge management, and SOC operations
  • Establish trust and business relationships with customers and other relevant stakeholders
• Critical thinking, curiosity, ability to work autonomously, rigor, and exceptional
• Fluent in English
• Technical skills:
  • Splunk
  • Tanium
  • TheHive
  • OpenCTI

Education and experience:

• Bachelor's degree in Computer Sciences
• +3 years of experience in a SOC / CSIRT / CERT.

Company’s Benefits

Talan’s offices are located in Union Square, right in the center of Manhattan. Our company benefits include:

• Competitive salary
• 401(k) retirement plan with company matching
• 3 weeks of paid vacation per year at hire and up to 5 weeks according to seniority (annual untaken vacation days are cashed out)
• Eight paid holidays
• 5 sick and 2 personal days
• Company health, dental and vision insurance plans
• Other benefits such as, commuter/transit benefits, Flexible Spending Account (FSA) and other company perks.

Cybersecurity, SOC,CSIRT, CERT, TheHive, Splunk, Tanium, OpenCTI