As the founding entity of RAINBOW PARTNERS, Quanteam is a consulting firm specializing in the fields of Banking, Finance, and Financial Services. Guided by our core values of closeness, teamwork, diversity, and excellence, our team of 1,000 expert consultants, representing 35 different nationalities, collaborates across 10 international offices: Paris, Lyon, New York, Montreal, London, Brussels, Geneva, Lisbon, Porto and Casablanca.
Context:
Our client (International Investment Bank) is strengthening its Cybersecurity Incident Response capabilities by seeking a CSIRT Consultant. The consultant will play a key role in managing and responding to security incidents, ensuring fast and effective resolution, and coordinating actions to mitigate risks across the organization.
Key Responsibilities
- Support the firm’s follow-the-sun operations model for global security monitoring.
- Monitor alerts from security tools (e.g., SIEM, Phishing, DLP, Threat Intel) and user escalations.
- Triage and prioritize incidents based on impact, scope, and severity.
- Conduct root cause analysis and lead containment, eradication, and recovery efforts.
- Analyze host/network artifacts and logs to reconstruct incident timelines.
- Proactively hunt for IOCs (Indicators of Compromise).
- Collect and preserve digital evidence following legal and internal standards.
- Correlate events with threat intelligence to enhance investigations.
- Ensure alignment of incident response practices with internal policies and external regulations.
- Support internal and external audits by maintaining incident documentation and evidence.
- Maintain and improve incident response policies, procedures, and playbooks.
Qualifications
- Bachelor’s degree in Computer Science, Cybersecurity, or a related field.
- Industry certifications (e.g., CISSP, GIAC, GCIA, GCIH, CEH).
- 5+ years in cybersecurity incident response or SOC roles.
- Experience in financial institutions or other regulated industries.