Apply now »

Cybersecurity Incident Commander F/M

Req ID:  36722
Date:  Mar 11, 2025
Location: 

FR

Brand:  Sonepar Global HQ

About Sonepar

Sonepar is an independent family-owned company standing as the world leader in B-to-B distribution of electrical equipment, solutions, and services. In 2023, Sonepar achieved sales of €33.3 billion. Present in 40 countries with a dense network of brands, the Group is leading an ambitious transformation to make its customers’ lives easier providing them with an omnichannel experience and sustainable solutions in the building, industry, and energy markets. At the core of this evolution is an omnichannel blueprint, meticulously crafted and brought to life by a robust digital task force of 300 specialists, further bolstered by an additional 70 champions in our operating companies.

Sonepar’s 45 000 associates are committed to accelerating the world’s electrification and driven by a shared Purpose: Powering Progress for Future Generations.

We believe that the power of connection extends beyond business interactions – it's about creating a sustainable legacy for future generations and ensuring that our impact on the planet is both meaningful and positive.

 

🎯 How will you shape our tomorrow

The Cybersecurity Incident Commander is part of Sonepar’s CSIRT (Cybersecurity Incident Response Team) and is responsible for leading the organization’s Incident Response (IR) engagements after detection and initial triage by the Security Operations Center (SOC). As the Incident Commander, this role involves managing all aspects of the response process, from containment to recovery, to ensure security incidents are effectively mitigated. The Incident Commander plays a crucial role in safeguarding the organization’s assets by coordinating response efforts, guiding cross-functional teams, and maintaining communication with stakeholders throughout the incident lifecycle. Additionally, this role contributes to the development and refinement of the incident response process (IRP), produces key performance indicators (KPIs), and documents lessons learned to continuously improve the organization’s incident response capabilities.

 

📊 Your responsibilities:

Lead Incident Response Engagements:

Lead incident response engagements after detection and initial triage by the SOC, managing all phases of the incident response process, including containment, eradication, recovery, and post-incident analysis.

Incident Response Process Development:

Contribute to the development and refinement of the incident response process (IRP), ensuring it aligns with industry best practices and organizational policies.
Incident Response Plans and Playbooks:

Develop and maintain incident response plans and playbooks, ensuring they are comprehensive, current, and effective.
Cross-Functional Team Coordination:

Coordinate cross-functional teams, including IT, security operations, legal, communications, and business units, to manage and resolve security incidents efficiently.
Stakeholder Communication:

Communicate regularly with stakeholders at all levels, providing updates on incident status, impact, and response efforts.
Key Performance Indicators (KPIs):

Produce key performance indicators (KPIs) to measure the effectiveness and efficiency of incident response efforts and identify areas for improvement.
Post-Incident Reviews:

Conduct post-incident reviews and lessons-learned sessions, documenting findings to enhance the organization’s incident response capabilities.
Compliance and Documentation:

Ensure all incident response activities comply with relevant regulations, standards, and internal policies. Maintain detailed documentation of incidents, including actions taken, timelines, outcomes, and lessons learned, to support future investigations and audits.

Training and Awareness Programs:

Provide training and awareness programs to improve the incident response skills of team members and other stakeholders.
Threat Monitoring:

Monitor emerging threats and trends to ensure the incident response process remains effective against evolving cyber threats.
External Collaboration:

Collaborate with external partners, including law enforcement, incident response vendors, and industry peers, to share information and coordinate response efforts.
 

 

🛠️ The Experience you bring

  • Education: Bachelor’s degree in Information Technology, Cybersecurity, or a related field.

 

  • Certifications: Relevant certifications such as GIAC Certified Incident Handler (GCIH), Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or Certified Information Systems Auditor (CISA) are highly desirable.

 

  • Technical Skills with a strong Incident Response Expertise:

o    Strong knowledge of incident response methodologies, tools, and best practices. 
o    Excellent leadership and decision-making skills, especially in high-pressure situations. 
o    Ability to analyze complex security incidents, research root causes, and recommend effective mitigation strategies.
o    You have 5+ years of experience in a role with similar responsibilities, including CERT/CSIRT, SOC or SecOps.
o    You have a good understanding of information security incident management processes and methodologies (e.g. : ISO 27035, NIST framework or SANS 6-steps).
o    You are able to convey an information security message to an organization’s management/executive.
o    You know how to keep your cool under pressure and think straight during chaotic moments.

 

 

  • Soft skills:

o   Communication: Ability to convey technical information clearly and effectively.

o    Analytical Thinking: Ability to analyze security alerts and identify threats.

o    Attention to Detail: Ensuring accuracy and thoroughness in all tasks.

o    Problem-Solving: Basic skills to assist in resolving security incidents.

o    Team Collaboration: Ability to work effectively within a team.

o    Adaptability: Willingness to learn and adapt to new security challenges.

o    Conflict Resolution: Mediating disputes between collaborators or stakeholders

o    Collaboration: Working effectively with international, multicultural and/or cross-functional teams.

 

 

🌍 Work Mode & Location

- Hybrid: 3 days in Paris (8ème) 

 

📊 Benefits that await you:

The role - Your daily activities will be interesting, stimulating and varied... No two days are alike!

The organisation - You'll be part of the Sonepar family and share the same values!

The culture - You'll be working in an international environment.

The team - Our dynamic, multidisciplinary, open-minded and talented team is eager to welcome additional skills to continue to meet the challenge.

 

✅ 75% reimbursement of your monthly or annual transport pass.

✅ Swile Ticket restaurant card

✅ Gym exclusively reserved for the company and made available to employees free of charge.

✅ Sustainable mobility package

✅ Health insurance & Welfare

✅ Employee Savings Plan & Profit Sharing Bonus.

 

🤝 Recruitment process

Manager Interview

Interview with a peer

HR Interview

We are interested in knowing you more. Start an exciting new career and enjoy many employee benefits by applying online. Sonepar HQ is thankful for your interest in joining the team, only individuals selected for interview will be contacted.

 

More information on Sonepar:

Website: www.sonepar.com 

Twitter: @sonepar

LinkedIn: https://www.linkedin.com/company/sonepar/  

Check out Sonepar on Facebook!

 

To apply, you must use a computer and one of the following browsers: Safari, Chrome, Mozilla Firefox or even EDGE.

Apply now »