• Leadership and Team Management:
  • Lead and grow a team of cybersecurity analysts, providing mentorship and guidance.
  • Coordinate with other teams and stakeholders to ensure alignment of security operations with overall organizational goals.
  • Foster a collaborative and team culture.
• Security Monitoring and Analysis:
  • General cybersecurity monitoring of endpoints, servers and operational environment, cloud and on prem.
  • Vulnerability management and monitoring.
  • External attack surface monitoring and management.
  • Dark web monitoring.
  • Threat monitoring and management.
  • Analyze and define action plans to handle threats and vulnerabilities.
  • Develop and implement strategies to mitigate identified risks.
• Playbook and Process Development:
  • Define, develop, and maintain playbooks and standard operating procedures (SOPs).
  • Ensure playbooks and SOPs are up to date, comprehensive, and aligned with industry best practices.
• Incident Management:
  • Oversee the monitoring, detection, analysis of security incidents.
  • Participate to incident response efforts, ensuring timely and effective resolution.
  • Conduct post-incident analysis to identify root causes and improve response processes.
• Reporting and Documentation:
  • Produce clear and concise reports, metrics, and other documentation for various stakeholders.
  • Communicate security incidents and responses to senior management and other relevant parties.
  • Maintain accurate and comprehensive records of all security incidents and responses.
• Continuous Improvement:
  • Stay up to date with the latest cybersecurity threats, trends, and technologies.
  • Continuously assess and improve processes, tools, and capabilities.
  • Implement new technologies and methodologies to enhance team efficiency and effectiveness.

• Minimum of 5 years of experience in a Security Operations Center (SOC) environment or similar experience.
• Relevant cybersecurity certification(s) is a plus.
• Proven experience in defining playbooks and standard operating procedures.
• Strong leadership, team management and team organization skills.
• Experience with Sentinel and Microsoft Defender suite is a plus.
• Excellent writing and analytical skills.
• Deep understanding of cybersecurity principles, threats, and incident response methodologies.
• Strong problem-solving skills and attention to detail.
• Bilingual (French/English)