STAGE - Content Analyst - Cybersecurity

Led by Rodolphe Saadé, the CMA CGM Group, a global leader in shipping and logistics, serves more than 420 ports around the world on five continents. With its subsidiary CEVA Logistics, a world leader in logistics, and its air freight division CMA CGM AIR CARGO, the CMA CGM Group is continually innovating to offer its customers a complete and increasingly efficient range of new shipping, land, air and logistics solutions.

Committed to the energy transition in shipping, and a pioneer in the use of alternative fuels, the CMA CGM Group has set a target to become Net Zero Carbon by 2050.
Through the CMA CGM Foundation, the Group acts in humanitarian crises that require an emergency response by mobilizing the Group’s shipping and logistics expertise to bring humanitarian supplies around the world.

Present in 160 countries through its network of more than 400 offices and 750 warehouses, the Group employs more than 155,000 people worldwide, including 4,000 in Marseilles where its head office is located.

CMA CGM is recruiting for a 3-6 month stage in the Montreal to join the cybersecurity SOC team.

SUMMARY

As part of the Content Team the responsibilities of this position are to create advanced cybersecurity content within the SIEM Elastic environment. thwy will  enhance our Security Operations Center (SOC) and develop strong cyber defense mechanisms. 

RESPONSIBILITIES

• Protect the CMA-CGM group:

  • Design and optimize SIEM content to detect and respond to cyber threats.

  • Implement machine learning algorithms to improve detection accuracy.

  • Stay updated with the latest cyber threats and security technologies.

• Improve SOC posture:

  • Analyze and improve existing SIEM content and detection rules.

  • Evaluate content performance and adjust alerting thresholds.

  • Collaborate with teams to meet evolving security requirements.

  • Increase MITRE ATT&CK coverage.

• Small projects:

  • Work on projects to improve security posture.

  • Collaborate with Purple Team and Threat Intelligence.

  • Develop documentation for efficient content management.

  • Participate in CI/CD implementation or SOAR Automation.

QUALIFICATIONS:

*Candidates must be legally authorised to work in Canada

Education: Bachelor's degree in a related field or equivalent knowledge.

Experience:

• Knowledge in SIEM Tool.

• Knowledge of cybersecurity principles and attack vectors.

• Understanding of operating systems, network protocols, and log analysis.

• 1+ years of experience in IT Security or SOC.

• Experience with cybersecurity monitoring tools.

• Knowledge of security operations concepts and common attack vectors.

• Experience with Cyber Kill Chain Model and MITRE ATT&CK Matrix.

• Experience in transport/shipping/logistics is a plus.

Other Qualities:

• Analytical and problem-solving skills.

• Motivated and willing to learn.

• Autonomous and proactive.

• Understanding of security logs.

• Ability to work with management and technical teams.

• Discretion with sensitive matters.

We are an equal opportunity employer!

Come along on CMA CGM’s adventure !