IT Security Analyst (EDR)

👉Who we are:

ArcelorMittal Business Center of Excellence (BCOE) is the business services competency center at ArcelorMittal Europe - a global leader in the steel and mining industries. BCOE's mission is to provide business services to the ArcelorMittal in the most cost-effective and timely manner to enable it to concentrate on its core tasks. BCOE has experience resources and uses state of the art tools to deliver best-in-class service and cost competitiveness to ArcelorMittal Group, its affiliates and also external clients. We are a results-oriented company for which passion, people and progress are extremely important. We value diversity and integration in the workplace, and our strength lies in multicultural teams. We attach great importance to the support and development of our employees.

🔎For more information please check out our website: https://bcoe.arcelormittal.com/

🌍 Where we are: Company headquarters is located in Poland in Dąbrowa Górnicza

👐🏼 About our IT Team:

• We are hiring around 200 employees in IT domain. Our IT Team consists of: SAP solutions, development (e.g. PowerBI, Python), RPA, infrastructure& service desk, cybersecurity, project management and we are constantly growing !

🎯 What we can offer you on employment contract:

• Private medical care in Medicover
• Co-financing for meals
• Sharing the costs of foreign language classes
• Sharing the costs of professional training & courses
• Remote work opportunities
• Flexible working time
• Integration events
• Retirement pension plan
• Saving & investment scheme
• Preferential loans
• No dress code
• Coffee / tea
• Parking space for employees
• Leisure zone
• Extra social benefits

👉 About a role: 

Primary responsibility will be management of EDR environment. Moreover, this role requires broad knowledge of antimalware policy configuration, expert rules creation and understanding of Active Threat Protection mechanisms. This position require also further development of various Security solutions and services that aim to protect endpoints and data, to evaluate vulnerabilities, to monitor security breaches and support incident response.

👉 Responsibilities:

Security monitoring:

• Perform investigation of common cyber security incidents

• Participate in handling complex cyber security incidents investigation and analysis

• Maintain security systems to monitor active IOCs

• Support team and local units in executing after-incident recommendations

• On call duty (One week every 5 weeks on average) - not mandatory

Security tools management:

• Maintain security tools like EDR, NDR, SIEM

• Maintain security tools by applying exceptions configuration for IT applications

• Support team and local units with security tools configuration and troubleshooting

• Ensure that security monitoring tools are working properly

• Support team in deployment of necessary security tools in the infrastructure

• Contribute to the development of operating capabilities of the team members

• Interpret results of vulnerability scans in context of ongoing security incidents

👉 Requirements:

• Essential understanding of at least 4 of below knowledge domains:
• Windows/AD Administration
• Linux Administration
• Networking
• Security Monitoring
• Vulnerability management
• Forensics & Incident Response
• Good knowledge and strong interest in IT Security (best-practices, standards, technology)
• A proven experience of working with security tools like AV, EDR, SIEM, NDR
• Experience with security incidents handling as advantage
• Quick learner with strong time management skills
• Able to work in multi stakeholder environment
• Strong troubleshooting skills and good attention to details
• Curiosity and ability to learn