SOC Engineer

About SQUAD - Cabinet de conseils et d’expertises

Since 2011, SQUAD has established itself as a key player in cybersecurity, ranked among the French leaders in the sector and certified PASSI RGS and LPM. We support major organizations in protecting their information systems with our 360° offering in consulting, integration, expertise, and service centers.

Our mission is "Securing Together!" We believe in collaborative cybersecurity, where experts and clients advance together to anticipate threats and secure critical infrastructures and embedded systems.

Our ambition: to become the preferred cybersecurity reference by 2027! We leverage our technical DNA and cutting-edge expertise for major accounts, integrating cybersecurity into the heart of IT, OT, and Cloud infrastructures.

With over 850 experts across 12 agencies in France, Switzerland, Spain, and Canada, we are committed to offering the best in cybersecurity and secure development to our clients. More importantly, we offer our employees stimulating and rewarding careers based on individualized professional development paths, fostering a benevolent, friendly, and inclusive work environment where personal success is essential to collective success.

The Opportunity: SOC Engineer

As part of the growth of our Lyon agency, we are looking for a SOC Engineer.

Responsibilities

• Lead investigations on security systems to detect threats and suspicious activities.
• Improve the detection capabilities of the SIEM tool and its agents, and develop new, more efficient daily use cases.
• Develop and maintain incident response procedures and business continuity plans.
• Participate in the design of security systems and architectures for infrastructures and applications.
• Assume a technology watch role to stay informed about new threats and emerging security solutions (SOAR / MISP).

Required Skills & Qualifications

• Master's degree from a top engineering or business school. A specialization in cybersecurity is a plus.
• Acquired experience as a SOC or CERT analyst.
• Strong knowledge of various cyber defense products: IDS/IPS, log management systems, SIEM solutions (RSA, Splunk, Qradar, ELK etc.), vulnerability scanners, APT detection tools, parsing etc.
• Communication and presentation skills to help clients understand automation challenges and proposed solutions.
• Ability to work in a team and collaborative environment.
• Experience within a PDIS SOC or participation in obtaining PDIS qualification is a significant advantage for your application.

Joining SQUAD Means

• Benefiting from personalized support through the SquadeXpérience in your career development. Our experts guide you in building your training path, targeting courses and certifications to achieve your professional goals.
• Developing your expertise and public speaking by leading MixYourTalent (webinars), participating in our monthly CTF sessions (HackTheBox), writing technical articles published on our #TheExpert blog, and other internal technical events.
• Participating in top Tech Events and reference events to represent SQUAD, proudly carry our colors, and attend conferences by recognized experts to develop your technological watch (FIC, DevCon, LeHack, European Cyber Week, etc.).
• Becoming an expert and reference for our candidates, speaking at our partner schools, and having the opportunity to contribute to tender defenses.
• And above all, a lot of fun and conviviality (#AfterWork, #AnnualParty, #MeetYourBoss, #TeamSpirit, #TeamLunch, #GamingNight, #OSINTNights, #CTFSessions).

Key skills/competency

• Cybersecurity
• Security Operations Center (SOC)
• SIEM (Security Information and Event Management)
• Incident Response
• Threat Detection
• Vulnerability Management
• Log Management
• Cyber Defense
• Network Security
• SOAR / MISP