Security Engineer

ELITE CYBER

Security Engineer - Client Final - Paris - CDI


EliteCyber represents a major player in mobility markets and listed on Euronext Paris.

My client operates through multi brands meeting every customer specific needs.

They deliver mobility solutions worldwide solutions through an extensive network in 137 countries.

They are actually in a middle of big digital transformation projects such as Cloud migration and many more to come for next year.



Within the Product & Technology direction, reporting to the CISO, the Security Engineer main objectives are:


 
  • Protect IT systems against threats of all nature
  • Resolve potential security incidents and participate in investigations
  • Be the expert and provide recommendations on how to defend our IT
YOURS RESPONSABILITIES
  • Identify and define security requirements, baselines and controls for both the existing environment and new developments in IT infrastructure
  • Contribute to the preparation of Standard Operating Procedures covering incident Handling, Problem Management and Forensics Investigations
  • Configure, monitor and troubleshoot security infrastructure devices and services such as SIEM, DLP or CASB
  • Establishing disaster recovery procedures and conducting breach of security drills
  • Identify opportunities for, and promote automation and new technical solutions and security tools to help mitigate security vulnerabilities and improve efficiency
  • Participate in evaluation and selection of products and security solutions, set the security requirements and coordinate or run POCs
  • Coordinate and/or perform penetration tests, evaluate findings and drive mitigation
  • Coordinate vulnerability assessments, evaluate findings and drive mitigation
  • Provide reports for assessment findings, product evaluations, propositions for further system security enhancement
  • Improve automation and security tools by light coding or scripting
  • Identify and communicate current and emerging security threats
INTERNAL AND EXTERNAL RELATIONSHIPS
  • Internal: IT Ops (Network Services, Projects, Integration, …), Product Lines, Local IT, Legal & Privacy...
  • External: Cloud providers (AWS & Google), software and hardware suppliers, penetration testing providers, Security Operation Center provider, other outsourcing companies
TECHNICAL ENVIRONMENT
  • AWS & Google Cloud Platform
  • Datacenters with 2 000 servers (AIX, Linux, Windows) - VMware - Citrix
  • Google Suite
  • Splunk
  • Symantec (SEP, DLP, CASB)
  • Ballabit / One Identity security bastion
  • Rapid7
  • Burp Suite
  • Palo Alto, F5 BigIP with ASM
 
YOUR PROFILE

* Previous experience of 3 years on a similar job
* Relevant certifications such as CISSP, CISSP-ISSEP, CEH is appreciated
* Education level / certificates: Engineer or equivalent level
* Languages: English fluent; French and Spanish are a plus

Computer skills

  • Strong technical background
  • Experience in crisis management
  • Technical knowledge of network, databases and operating security systems
  • Google’s Office suite

#France #IDF #PARIS #cyber #cybersecurity #perm #permanent #itsecurity #infosec  #incident #incidenthandling #incidentmanagement #gestiondesincidents #troubleshooting #forensics #siem #dlp  #pca #pra #disasterecovery #crisis #crisismanagement  #pentest #pentesting #vulnerabilities #vulnerabilityscan #vulnerabilitiesmanagement #log #correlation #securitytools #securityproducts#securityengineer #ingénieursécurité #enduser #clientfinal #job #jobopportunity #cloud #aws #google #google-cloud #datacentr #datacenter #vmware #virtualisation #virtualization €Windows #linux  #citrix #google-suite #splunk #symantec #ballabit  #one-identity #rapid7 #burp #burp-suite #paloalto #réseau #network #fw #firewall #firewalls #firewalling #F5 #BigIP #ASM #COBIT #TOGAF #cybersecurite #cybersecurity #sécurité-it #itsecurity #cloudsecurity #mobilesecurity #IAM #identityaccessmanagement #gestion-desidentitésnumériques #ad #activedirectory #iaas #paas #api #casb #iot #internetofthethings #IS 2700x #ISO27001 #ISO27002 #ISO27005 #SANS #NIST #CISSP #CISM #GIACGSE #ISC2ISSAP #ISSEP #CCSP #consultant #Cybersecurityengineer #ingénieurcybersécurité #SOC #SecurityOperationcenter #Risques #risk #riskanaysis #anamysederisques #TechnicalSecurity #securitypolicies €Infosec #nformationsecurity #Riskmanagement #ebios #mehari #gapanalysis #international #english