33 Implementation of an Intelligent and Autonomous SOC for IT Infrastructure Security PFE
Proxym Group
StageHybride4 à 6 moisDate limite : 26 nov. 2025
cybersecuritySecurity Operations (SOC)SIEM & Automation
Description
Project overview
- The project consists of designing and deploying an intelligent, autonomous Security Operations Center (SOC) capable of collecting, centralizing and analyzing logs from multiple sources (servers, firewalls, endpoints, cloud applications).
- Goal: deliver an operational SOC that proactively detects security incidents, reduces alert noise and automates simple responses to secure the IT infrastructure. (REF: PRX-2026-18)
Objectives & scope
- Integrate open-source tools for SIEM, incident analysis, visualization and automation to provide end-to-end detection and response capabilities.
- Scope includes log collection, centralization, correlation, alert triage, visualization (dashboards) and orchestration/automation of predefined remediation actions.
Key responsibilities / tasks
- Install, configure and deploy components for log ingestion, normalization, storage and correlation across servers, firewalls, endpoints and cloud apps.
- Develop detection rules/tuning to reduce false positives, implement alert prioritization, and create simple automated playbooks for common incidents.
Technologies & tools
- Working areas explicitly listed: Operating system, Firewall, Network monitoring, SIEM, Orchestration / Automation.
- Candidate will evaluate and integrate open-source solutions (SIEM/analysis/visualization/automation) and connect them to the organization's data sources.
Expected deliverables
- A deployed, documented and operational SOC architecture including data collection pipelines, correlation rules, dashboards and automation playbooks.
- Delivery of documentation and runbooks enabling handover: deployment guides, operational procedures and incident response playbooks.
Profile & requirements
- Engineer profile / Bachelor's degree.
- Required profile: 1 Trainee. Preferred skills include familiarity with system administration, networking/firewalls, SIEM concepts and basic scripting for automation (practical experience with open-source security tools is an advantage).
How to apply
- Apply via the trainees platform: https://trainees-platform.proxym-group.net
- Include the reference PRX-2026-18 in your application and highlight relevant projects/skills in SOC/SIEM/automation.