Operational security analyst

Operational Security Analyst

What you will do

As our new Operational Security Analyst, you will play a central role in coordinating and delivering security controls aligned with Group standards and regulatory frameworks, with a focus on the foundation security domain. You will lead vulnerability, hardening and obsolescence remediation initiatives, manage security tooling, and drive security-by-design practices across the organization. You will work closely with local, regional and Group IT and security teams to ensure timely and effective delivery of remediation plans and security controls, including NIST.

Responsibilities

• Leading vulnerability and hardening management, including prioritization and large-scale automated remediation.
• Creating and steering taskforces to enable rapid and effective resolution of critical vulnerabilities.
• Overseeing obsolescence management of legacy servers, coordinating resources for decommissioning and remediation activities.
• Leading the delivery and implementation of NIST security controls across all entities, ensuring compliance and on-time execution.
• Embedding security-by-design principles into all infrastructure initiatives from design through build, deployment and operations.
• Managing and continuously improving foundation security tooling, and providing expertise to define and validate remediation plans.
• Implementing governance rituals, producing executive-level reporting, and coordinating local and offshore stakeholders to ensure remediation delivery.

Who are we looking for?

The ideal candidate has strong operational security expertise combined with the interpersonal skills required to coordinate remediation activities across multiple entities and geographical locations. You are comfortable working in complex environments, driving large-scale remediation initiatives, and engaging with both technical and executive stakeholders. You are proactive, structured, and focused on continuous improvement of security controls and processes.

Qualifications

You will have relevant experience in a similar role, preferably holding a Bachelor's or Master's degree in Information Security, Cybersecurity, Computer Science, or a related field.

Additional requirements

• Proven experience in vulnerability management, hardening, and remediation at scale.
• Strong knowledge of infrastructure security and security frameworks
• Experience with security tooling, asset inventory, coverage monitoring and reporting.
• Ability to analyze emerging cyber threats and translate them into actionable mitigation strategies.
• Experience supporting incident management and security alert processes.
• Strong stakeholder management and communication skills, including coordination of offshore teams.
• Fluent in English (French is a strong plus).

Benefits

We believe in rewarding you holistically, through compensation, competitive benefits and rich development opportunities.

We enable you to reach your full potential by offering you the opportunities and support to reach the next level in your career.

We offer a wide variety of benefits to help keep you mentally and physically strong and to find the perfect work-life balance.

We create an engaging environment where you can be your authentic self and harness your commitment, curiosity and collaboration.

We're conscious of our environment and the societies we're part of and we work together to drive electrification and lead the way to decarbonisation.