Cloud Security Engineer Contrat : CDI

Référencée au sein de nombreux grands comptes en tant que fournisseur de prestation IT, Excel Management Conseil est une société de services en informatique existante depuis plus de 10 ans.

Riche d’une expérience significative en France et en Europe, notre groupe E.X.M.C se positionne en tant qu’acteur majeur sur le marché des sociétés de services en ingénierie informatique.

Nous intervenons à la fois sur des périmètres Métiers, Techniques et Opérationnels. Notre groupe affiche un effectif de plus de 300 collaborateurs disponibles et mobiles.

Nous sommes structuré autour de Quatre Pôles :

• Le Consulting et Assistance à Maîtrise d'Ouvrage (MOA, AMOA) dédié Banques, Finance, Assurances.
• L’ingénierie applicative (La maîtrise d'œuvre de projets informatiques (MOE), Ingénierie de développement, TMA, TRA, …)
• La production et les infrastructures (Ingénierie, Assistance Technique infogérance, architecture systèmes et réseaux, sécurité, cyber sécurité , Digital…)
• L’Informatique Décisionnelle et BIG DATA (Architecture(Avant-vente/POC/ Pilotage Projet) , Développement, Expertise (Hadoop,NoSQL, …))

We are looking for a SecOps (Not DevSecOps, DevOps) that will be service for:

• Local Cloud Broker reference for operational security activities of the Public Cloud platforms
• Provide service and secure the Public Cloud environment and the related context
• Review Security related changes on Public Cloud platform components
• Liaise with Security representative between Cloud Brokers, Products/Applicative owners and Group Operation Security
• Implement and control security analysis for Platform upgrades, Changes, Compliance requirements
• Implement and control Cloud Platforms Continuous Security Assurance Plan
• Integrate Security By Design prerequisites into CI/CD and Infra As a Code Provisioning
• Suggest effective security controls to be implemented for Cloud Platforms and Services
• Coordinate with Cloud product teams to consolidate cloud security reports.
• Service environemnt with Entities Teams Representative to ensure the effective compliance and remediation of security issues (Vulnerabilities and non-compliance to Company standards)

The activities under the scope are:

• Local Governance
• Security Projects cross Market
• Local FinOps initiatives
• Security Mandatory Compliance
• Security Internal Audits
• Recertification
• Service Enablement
• Security Incidents

• Bachelor degree in Computer Science, Engineering, or related field.
• An MSc Information Security is a plus
• 4+ years’ expertise in Operational Security on the Public Cloud Providers : Azure/AWS
• Expertise on the Cloud Security Frameworks, Regulatory Compliance and Security Services
• Expertise on Azure Architecture or AWS Architecture or both
• Expertise of the Secure by Design Principles, SecOps and DevSecOps Principles
• Expertise in change management and Secure Development LifeCycle (SDLC)
• Capacity to work in a matrix organization
• Expertise in Security Incident Management
• Ability to learn quickly
• Strong interpersonal and communication expertise; able to deal effectively with diverse cultures, expertise sets and personalities, works effectively as a team player
• Organized with a proven ability to prioritize workload, meet deadlines, and utilize time effectively
• Strong facilitation, negotiation and conflict resolution expertise
• Strong analytical expertise
• Apply analytical rigor to understand complex business scenarios

Languages:

• English – Mandatory.
• French – Optional.