Are you passionate about #AI or #cybersecurity? You love working with high profile teams with a sure taste for challenge and variety? You dream to join a fast-growing company with start-up mentality? Eager to learn continuously? Join Proximus Ada ! Within this Proximus’ newly created centre of excellence for AI and Cybersecurity, the team of data scientists, data engineers and analytics translators, supports the Proximus group in designing, developing and deploying internal AI-driven applications in line with the business needs.

Role description

The Cyber Security Incident Response Team is a centralized security service, responsible for managing cyber security incidents within the Proximus Group. The team is responsible for delivering all relevant services to mitigate an incident as quickly and efficient as possible and to keep (higher) management updated on the progress.

As an Incident Response Officer in the CSIRT you are responsible to respond to cyber security incidents when they occur. Your main objective is to respond effectively and work together with the technical teams within the different business unit within Proximus.

Your role:

• You have end-to-end responsibility for coordination of cyber incidents that are being reported by internal or external sources, including: prioritize incidents, identify key people in system teams, organize crisis meetings, send notification alerts to key stakeholders, perform complex incident analysis, perform forensic investigation where applicable, document analysis findings, perform research on threat actor, share and discuss threat information with team and liaise with press team in case of public exposure.
• You provide expert support to the team that monitors security alerts (Cyber Defence Center).
• You are responsible for collecting and generating statistical incident information, build reporting, regularly present reporting information to higher management.
• You liaise with 3rd parties (other telecom operators, security actors, equipment vendors…) to gather intelligence about emerging threats and vulnerabilities. Take appropriate actions accordingly with relevant teams, in order to limit risk and exposure for Proximus.
• You initiate and participate in expert reviews with engineering and monitoring teams in order to improve security architecture for critical environments, monitoring tools, security processes, cyber defence strategy, etc.
• You proactively propose improvement actions for IT/Network to reduce/prevent cyber incidents, and perform follow-up until implementation.
• You provide input for mitigation plan.

Profile

• Bachelor’s in Computer science/ Information security or equivalent combination of education and experience.
• CISSP, CISM, CISA, CEH, CHFI certificates are considered high value.
• You have in-depth knowledge of Internet technology and protocols.
• You are an expert in security vulnerabilities/weaknesses and related attacks.
• You have a good knowledge of scripting languages (Perl, PHP, Python, shell…).
• You are flexible and a strong team player.
• You have great communication skills and experience in participating in (inter)national security information sharing groups.
• You show integrity & trust while managing confidential information.
• Experience within telecommunications environment and technologies is considered of high value.
• Mastering English is a must for the position. Speaking French and/or Dutch is a plus.
• You are ready to work and respond to incidents outside of business hours.

**Applicants must enjoy full rights as Belgian citizens or have been living for 5 years in Belgium to be considered for this role.**