Cyber Security Analyst - Apprentissage (All Genders)

Réf. 1292292 - publié le 28 février 2025

Informations générales

Missions

Dailymotion vous propose une offre d'alternance dans les domaines Information, communication, Documentation, Edition, PAO, Information, communication, Journalisme,... à Issy-les-Moulineaux.

<p>We're looking for an enthusiastic and inquisitive cybersecurity student to join our team.</p>
<p>Reporting to the Chief Information Security Officer (CISO), you will be responsible for the cybersecurity tasks described below.</p>
<p>This is a unique opportunity to help protect Dailymotion against cyber-attacks and ensure the confidentiality, integrity and availability of our digital assets.</p>
<p><strong>Main tasks</strong></p>
<p>1- Qualification of security alerts</p>
<p>- analysing security event alerts as incidents and classifying them as cybersecurity incidents where appropriate. Alerts are reported by :</p>
<ul>
<li>SOC,</li>
<li>BugBounty researchers,</li>
<li>employees (phishing),</li>
<li>Determine the impact, criticality and relevance of the alerts reported;</li>
<li>in the case of a BugBounty report, reproduce the vulnerability on a dedicated platform;</li>
<li>propose and check the associated corrective measures in conjunction with the technical (platform, corporateIT and development) and legal teams;</li>
<li>propose short- and medium-term adhoc improvements;</li>
<li>compile adhoc indicators.</li>
</ul>
<p>2- Treatement of alerts of fraud</p>
<p>- analysing fraud alerts and classifying them as proven fraud if necessary;</p>
<p>- determine the impact and financial cost;</p>
<p>- propose areas for adhoc improvement;</p>
<p>- compile adhoc indicators.</p>
<p>During the work-linked training period, candidates may move into an additional activity : &nbsp;</p>
<p>Incident response</p>
<p>- once the alert has been classified as a cyber security event, propose an action plan to limit the consequences of the attack and correct the vulnerabilities identified;</p>
<p>- check that the action plan has been implemented within the set deadlines (in particular, regulatory deadlines);</p>
<p>- Preserve evidence in case a complaint is filed;</p>
<p>- compile adhoc indicators.</p>

Profil

<p>- Knowledge of programming languages;</p>
<p>- Knowledge of cybersecurity concepts: SOC, SIEM, vulnerabilities, penetration tests;</p>
<p>- Experience with code scanning and analysis tools (SonarQube, Snyk, etc.) is a plus;</p>
<p>- Rigour and analytical skills to assess security alerts;</p>
<p>- Ability to work in a team and to explain;</p>
<p>- Communication skills to explain technical subjects in a friendly manner;</p>
<p>- Responsiveness and adaptability to cyber security incidents.</p>

Postuler

Nom du recruteur : Dailymotion