Cybersecurity Architect

Within our teams, the Confirmed Enterprise Cybersecurity Architect ensures that the technical and technological choices of IT and business projects respect the organization's security strategy.

It constitutes the technical security authority on corporate IS architectures, defines security models and supports the development of architectures, consistent with the IT strategy and security policies of the organization.

You will work on high-stakes activities sometimes combining notions of safety (operation, people), production issues for companies or strategic sectors of the group and for our external clients.

Your activities as an Enterprise Cybersecurity Architect will be structured around 4 main themes and typical activities:

Design

• Establish the IS security architecture strategy in line with the business strategy, the security objectives resulting from risk analysis and the overall security strategy of the company

• Define and apply reference models for architectures

• Contribute to the translation of security policies into operational security standards

Recommendation

• Support projects in the design of the architecture, specify the different settings and define the technical security requirements

• Advise on the choice of technical solutions and recommend secure architectures for IS; ensure regulatory compliance where applicable

• Regularly review the existing architecture, identify gaps and make recommendations for security improvements

• Define security testing and validation strategies and ensure follow-up of recommendations

Advice

• Advise on the use and combination of existing security bricks

• Analyze security issues linked to the introduction of new technologies or new information systems

• Ensure technological monitoring and take it into account in the definition of security architectures

Communication

• Contribute to the increase in security maturity of IS with technical architects and urban planners

• Collaborate with technical security specialists to consolidate a global view of defensive IT security

• Popularize your technical knowledge with other technical and non-technical functions.

• You have an engineering school degree (or equivalent) in the field of cybersecurity, OR you have significant experience in cybersecurity.

• You have at least 5 years of experience in security and have worked on major projects in several sectors (Transport, Space, Pharmaceuticals, Banking, etc.)

• You know how to implement the principles of defensive security and know how to carry out your activity independently.

In particular, you know how to highlight several skills in the following themes:

• Secure architecture design

• PKI (Public key infrastructure)

• Cloud

• Cryptography

• Identity and access rights management (IAM)

• Network security and communication protocols

• Security in operating systems

Skills in one of the following areas are also a plus (optional):

• Design methods, System engineering and security

• Security Product Configuration and Hardening

• Systems auditability and incident management

We also expect the following behavioral skills from our experienced employees:

• Able to work cross-functionally within the organization, you do not hesitate to help profiles more junior than you and be a contributor to the Security Architecture Center of Competencies

• A curious and dynamic mind

• Adaptability to different situations and autonomy in your missions

• You begin to develop skills around leadership, self-confidence and sharing

• You begin to develop an interest in security standards and regulations and their relevance and application in your missions

Finally, we also place particular importance on your technical development, expertise and team spirit in our skills centers. You will therefore join technical communities whose objectives are to create this spirit, disseminate knowledge and bring your ideas to life!

As a confirmed profile we will also pay particular attention to the transmission of knowledge to your peers and to technical capitalization. If you are proactive, we are committed to supporting you in bringing your ideas to life!

As an international company, we work in a multicultural environment: an advanced English level is mandatory.

Optional:

This position requires a security clearance or requires eligibility for clearance by recognised authorities.