**Company description** Re:Sources is the backbone of Publicis Groupe , the world's third-largest communications group. Formed in 1998 as a small team to service a few Publicis Groupe firms, Re:Sources has grown to 5,000+ people servicing a global network of prestigious advertising, public relations, media, healthcare and digital marketing agencies. We provide technology solutions and business services including finance, accounting, legal, benefits, procurement, tax, real estate, treasury and risk management to help Publicis Groupe agencies do what they do best: create and innovate for their clients. In addition to providing essential, everyday services to our agencies, Re:Sources develops and implements platforms, applications and tools to enhance productivity, encourage collaboration and enable professional and personal development. We continually transform to keep pace with our ever-changing communications industry and thrive on a spirit of innovation felt around the globe. With our support, Publicis Groupe agencies continue to create and deliver award-winning campaigns for their clients. **Overview** + Understand business security requirements and develop accurate and realistic design plan along with risk mitigation solutions for the project. + Have a broad technical and deep security-based background. + Able to take highly technical requirements & create easy to understand, complete standard operating procedures + The Analyst works with multiple technology platforms and interfaces with other groups within Enterprise Infrastructure Services, IT architecture, Enterprise Application Services, and other technology and business functions. Additionally, the role requires familiarity with recent threats and adversarial techniques, as well as the ability to quickly understand complex environments + Completes assigned elements of IT security risk assessments and compliance audit. + Support elements of the Investigation and resolution as required and where necessary report incidents involving potential or actual breaches of protective security compliance. + Work with vendors to support the SIEM technology. Administration of the SIEM tools which includes configuring policies and creating relevant use cases based on latest threats. + Monitor and respond to alerts generated from the SIEM systems and other technologies. + Understand and follow the incident response process through event escalations. + Respond to escalations by the Incident Response Team. Experience in working on XDR/EDR tools like SentinelOne, Crowdstrike etc. **Responsibilities** + Strong and innovative approach to problem solving and finding solutions + Excellent communicator (written and verbal, formal and informal) + Flexible and proactive/self-motivated working style with strong personal ownership of problem resolution + Ability to multitask and work independently with minimal supervision. + Ability to prioritize based on criticality. + Able to work with remote employees & teams to create highly effective documentation **Qualifications** SIEM, Cloud Security (AWS,Azure and GCP etc.), Blue Teaming ,Threat Hunting, Threat Intelligence 2+ / 4+ Years of Security domain experience