Cyber Security & AWS Cloud Expert

Overview

You will be in charge of defining, implementing and managing the company's information security strategy in a hybrid multi-site environment. You will ensure the protection of systems and data for a hundred users against cyber threats, while actively contributing to the continuous improvement of the level of security.

The team being small (3 people), each have transversal missions widening the spec of the role.

Main responsibilities

• Monitoring and managing security alerts
  • Analysing and qualifying security alerts
  • Management of incident response and follow-up until resolution
• Pentests and vulnerability management
  • Organise and coordinate intrusion testing campaigns
  • Ensure weekly follow-up on pentest results
  • Prioritise vulnerabilities and monitor the implementation of remediation plans
• Cybersecurity awareness and training
  • Design and deploy internal phishing campaigns
  • Analyse results and performance indicators
  • Implement training and awareness initiatives tailored to users
• Reporting and governance
  • Update and maintain monthly security report data
  • Produce clear indicators for management
  • Contribute to the improvement of security processes and internal policies

The candidate will also be the DPO Representative to ensure compliance with the General Data Protection Regulation. Experience in implementing ISO 27001 certification will be a bonus .

Required skills

Technical

• Strong expertise in log handling and analysis
• Knowledge of security tools (SIEM, XDR, vulnerability scanners, phishing solutions, pentesting, etc.)
• Strong foundation in system, network, and application security
• Knowledge of pentesting and vulnerability management methodologies
• Comfortable with the AWS environment and security

Cross-functional

• Proactive and able to anticipate risks
• Excellent analytical and synthesis skills
• Good communication skills, both with technical and non-technical teams
• Rigorous, autonomous, and responsible
• Work closely with the system and network administrator in charge of patching hardware and application solutions
• Manage tickets related to your area of expertise
• Stay continuously informed about new threat techniques and effective solutions to fight them

With a higher education degree in IT, you have at least 10 years of experience in IT including 5 years in the cyber security field. In a multicultural and multi-site environment (Nice, Paris, Singapore, London), you are proficient in technical and professional English.

Additional knowledge about firewalls (PaloAlto), switches and servers (HP/Aruba), antivirus (Cortex XDR), patch management (BigFix), email systems (Office 365), SIEM (Logpoint), Pentest (Pentera), Bastions (Wallix), AWS Cloud would enhance your application.

After one year in the role, you will be able to work from home one day a week.

The salary will be determined according to the candidate's qualifications and experience.