Skip to main content

Cybersecurity Engineer

Job Summary

Cybersecurity improvement is a priority for Imerys as it may impacts its business, industrial and financial operations, and capacity to collaborate with partners, customers, financial market, shareholders…

Safeguards information system assets by identifying and solving potential and actual security problems. The Security expert guarantees the application of security policy on his specialised domain of activity. 

The security engineer takes the following responsibilities :

Security Policy

  • The Security expert guarantees the application of security policy on his specialized domain of activity 

  • Accompany and monitor operational declination of security norms 

  • Ensure the existence of security standards and organize their validation

  • Participate to the formalization of technical guides 

  • Deploys technical solutions 

  • Ensure infrastructure risks monitoring and harmonization

  • Accompany projects on his perimeter 

  • Ensure alerts monitoring on this perimeter 

  • Ensure infrastructure security 

Within the Global Security Operation Center, The Cybersecurity Engineer contributes to the technical leadership for security tools and standards and globally for all Cybersecurity related questions. He/She has to coordinate technically projects around Security tools

Positioning and Job Dimension within the organization

  • Reporting to the SOC Team Manager (Information Systems Security Officer)

  • Works with applications owners to improve the security of new and existing applications.

  • Contribute to the alignment of the Cybersecurity of acquired companies to Imerys standards. 

Systems scope and dimension:

  • Collaboratives Tools: Lumapps 15,000 users, Google Drive 12,000 users

  • Mobility: Google MDM & Lookout 5,400 devices

  • Firewalls: Palo Alto NGFW

  • Endpoint Detection & Response: Cortex xDR & XSOAR

  • Treat Intel: World Watch, Recorded Future

  • Vulnerability Management: Qualys VMDR

  • IAM: Okta

  • IT Service Management: ServiceNow

  • Web Filtering: Non-Explicit Proxy

  • Patch Management: BMC

  • Privileged Access Management: Beyondtrust

  • Asset Management: 11,500 Workstations, 1400 Servers, 300 Cloud Servers

  • Log Monitoring: xDR, Firewalls, Web Filtering, AD DC’s, DHCP, DNS, Okta, Wireless, Mobile, Cloudtrail

Your mission

  • As Cybersecurity Engineer, you will be responsible to respond to any security incident (IT & OT),

  • You will protect the Imerys brand and reputation against cyber threats by leading proactive actions and surveillance on the web and the dark net.

  • You will be administering and implementing the SOC platform (XDR, CTI, Mobile Security Solution …)

  • You'll run security investigations & queries

  • You'll be a strategic contact point for other IT colleagues and end-users

  • You will optimise the cybersecurity program and lead continuous improvement projects.

The little extras of the project :

  • You'll work in committed and responsive agile teams with peers all around the world.

  • You'll be involved from start to finish in projects that are both functionally rich and technically ambitious: high volume, high performance, maximum security requirements and many other exciting subjects.

Professional and technical competencies:

Previous experience

  • 3 years technical minimum of experiences on Cyber Security and security incident response 

  • International exposure

Technical competencies

  • Extensive knowledge of Security Solutions

  • Extensive knowledge of Cloud technologies (SAAS, PAAS, IAAS, CASB)

  • Extensive experience with Endpoint Detection & Response solutions

  • Extensive experience with Security orchestration, Automation and Response (SOAR)

  • Firewalls (preferably Palo Alto/Panorama)

  • Vulnerability Management (Qualys)

  • Patch Management

  • Forensics analysis

  • Good knowledge on mobility tools: devices, mobile device management, mobile applications...

  • Knowledge on virtual architecture

  • Security certifications that will have value for role:

    • CEH: Certified Ethical Hacker

    • GCRE: GIAC Certified Forensics Examiner

    • GBFA: GIAC Battlefield Forensics and Acquisition

    • GCIH: GIAC Certified Incident Handler

    • GICSP: Global Industrial Cyber Security Professional

    • GRID: GIAC Response and Industrial Defence

    • GWEB: GIAC Certified Web Application Defender

    • GEVA: GIAC Enterprise Vulnerability Assessor

    • CCSP - Certified Cloud Security Professional

    • GSE: GIAC Security Expert

    • CISSP: Certified Information Systems Security Professional

  

Behaviour and managerial competencies:

  • Capability to discuss within all organizations/countries in Imerys

  • Ability to interact with several project managers/engineers including senior leadership and peers

  • Ability to work in multicultural environments

  • Ability to organize/coordinate operations around global solutions within a multi local organization

  • Ability to manage and coordinate projects involving several actors of information systems: hosting, network, applications, systems, security…

  • Proactivity and continuous improvement mindset

 

Position TypeFull time

and

Permanent

D'autres ont aussi consulté

Cybersecurity Engineer

Entreprise:
Imerys
Ville:
Paris
Type de contrat: 
CDI
Catégories: 
Ingénieur Cybersécurité
Diplôme: 
Master
Publiée:
21.03.2024
Partagez maintenant:
Trouver un autre job