Our client is looking for an experienced Security Engineer to join a project headquartered in Paris, however this role can be carried out remotely.
Mission objectives and tasks
Under the authority of the Group operational security manager, you will be in charge of the customer:
o Participate in the development and update of security policies and ensure their dissemination and explanation in the entities.
o Support the entities in the implementation of security within the services, both in the project phase (migration) and in the run.
o Participate in the selection and implementation of security tools, use and make available all the cybersecurity tools managed by the Group cybersecurity team.
o Participate in the analysis and resolution of incidents impacting Veolia entities, in particular on Cloud services. Participate in the diagnosis and the development of resolution proposals in connection with the affected entities and external actors.
o Participate in the technical watch relating to events and security tools.
o Participate in the management of alerts from the Group cybersecurity team to the group’s cyber community.
o Participate in vulnerability and intrusion audits on the services used by the Group or specific entities. Ensure the dissemination of their results and the definition of remedial actions followed by their follow-up.
o Participate in the development of regular user and IT security awareness campaigns.
o Participate in discussions with external companies via Clusif or Cesin. Promotes the cybersecurity image of the client externally.
Desired training / experiences:
With a minimum of 4 years of higher education, you have several years of experience in IS security or in the production field with a pronounced appetite for cybersecurity.
Expected skills among the following:
o Good understanding of technologies, risk analysis and methodologies related to cybersecurity.
o Knowledge of Cloud services, including GCP and AWS.
o Good knowledge of Windows and Unix system environments (Linux …), and TCP / IP network
o Knowledge of development language intended to automate security controls, (Python)
o Knowledge of standard security repositories and also specific to the Cloud (ISO 27001, SecNumCloud, etc.)
o Fluent English and French
o Active Directory