Orange Business is a network and digital integrator that understands the entire value chain of the digital world, freeing our customers to focus on the strategic initiatives that shape their business. Every day, you will collaborate with a team dedicated to providing consistent, sustainable global solutions, no matter where our customers operate. With over 30,000 employees across Asia, the Americas, Africa, and Europe, we offer a dynamic environment to develop and perfect your skills in a field filled with exciting challenges and opportunities.

Role & Responsibilities

24*7 onsite cybersoc support to customer
Plan, implement, configure, and migrate market-leading cyber security solutions (Qradar, Sentinel, Defender etc.)
Creation and implementation of new SIEM use cases (correlation rules), fine tuning, Defender policies etc.
Configuration, onboarding, and parsing of new log sources in SIEM solution, working on malware analysis, mail analysis, Threat intelligence/hunting etc.
Classification and investigation of alarms from different threat detection platforms and provision of the processed results to our customers
Assessment of the effects of an attack, taking initial measures and making concrete recommendations for action, Improvement of response plans and incident playbooks.
Anomaly and attack pattern detection at all stages of the Cyber kill chain
Tool-based and manual threat hunting to detect attacks after zero-day exploits or vulnerabilities with a potentially severe impact on customer environments become known
Creation of security reports based on the security incidents within the reporting period
Creation of reports and dashboards
Ensure adherence to and implementation of best incident response procedures as well as internal and industry standards
Participation in on-call duty to ensure incident response even outside of business hours

• Degree / Diploma Holders with Cybersecurity knowledge.

                              Excellent verbal & written communication skills in English language

• Mandatory skill set
• Good hands-on experience on SIEM tools like Qradar, MS Sentinel.
• Knowledge on Microsoft Defender
• Good experience on Incident handling & response
• Certification in IBM Qradar SOC Analyst/Administratior, SC-200

• Secondary skill set
• Knowledge on Python, any scripting language
• Malware investigation and reporting
• Forensic investigation of SPAM / Phising email incidents
• Knowledge on threat intelligence & threat hunting
  
  4+ years related work experience in customer facing organizations within cybersoc services

• Global opportunities: Work in multi-national teams with the opportunity to collaborate with colleagues and customers from all over the world
• Flexible work environment: Flexible working hours and possibility to combine work from office and home (hybrid ways of working) 
• Professional development: training programs and upskilling/re-skilling opportunities
• Career growth: Internal growth and mobility opportunities within Orange 
• Caring and daring culture: health and well-being programs and benefits, diversity & inclusion initiatives, CSR and employee connect events 
• Reward programs: Employee Referral Program, Change Maker Awards

Regardless of your age, gender identity, race, ethnic origin, religion/belief, sexual orientation, marital status, neuroatypia, disability, veteran status or appearance, we encourage diversity within our teams because it is a strength for the collective and a vector of innovation. Orange Group is a disabled-friendly company and equal opportunity employer: don't hesitate to tell us about your specific needs.