Pentesting Coordinator Contrat : CDI

Référencée au sein de nombreux grands comptes en tant que fournisseur de prestation IT, Excel Management Conseil est une société de services en informatique existante depuis plus de 10 ans.

Riche d’une expérience significative en France et en Europe, notre groupe E.X.M.C se positionne en tant qu’acteur majeur sur le marché des sociétés de services en ingénierie informatique.

Nous intervenons à la fois sur des périmètres Métiers, Techniques et Opérationnels. Notre groupe affiche un effectif de plus de 300 collaborateurs disponibles et mobiles.

Nous sommes structuré autour de Quatre Pôles :

• Le Consulting et Assistance à Maîtrise d'Ouvrage (MOA, AMOA) dédié Banques, Finance, Assurances.
• L’ingénierie applicative (La maîtrise d'œuvre de projets informatiques (MOE), Ingénierie de développement, TMA, TRA, …)
• La production et les infrastructures (Ingénierie, Assistance Technique infogérance, architecture systèmes et réseaux, sécurité, cyber sécurité , Digital…)
• L’Informatique Décisionnelle et BIG DATA (Architecture(Avant-vente/POC/ Pilotage Projet) , Développement, Expertise (Hadoop,NoSQL, …))

The Service will do the following :

• Coordinate technical assurance activity e.g. penetration testing, application code review and vulnerability scanning
• Coordinate technical assurance reporting and metrics for internal review
• Liaise with solution engineers, designers and business/system/asset owners for issue resolution
• Collaborate with the internal requestors in order to define the scope and activities related to technical assurance for the Group products Internal
• Schedule and coordinate security testing globally maintaining relationships with the testing vendors
• Evaluate the audit results for consistency and reporting quality
• Expertise related to cyber defence able to assess technical assurance activities
• Evaluate and select vendor with the correct tools and technologies to perform assurance activities
• Accountable for the delivery of directly assigned Penetration Tests
• Accountability for the delivery of assigned Penetration Tests that are to be conducted by approved vendors
• Accountable for the management of assigned Penetration Test vendors
• Expertise in penetration test tools (Burp Suit, Metasploit, Nmap, Wireshark) and methodologies
• Expertise in cyber defence best practices, procedures

• Project risk management standards and good practice is highly desired (e.g. ISO/CEI 27001)
• An information Security Certification is highly desired (CCNP Security, CEHv9/v10…or/and equivalent)
• Project management certification (e.g. PMP, PRINCE2) is an advantage Agile methodology (e.g. SCRUM or equivalent) is an advantage
• Expertise in scoping and execution of complex projects.
• Expertise in supporting drug development projects preferred.
• Expertise in in project management, office management, business administration.
• Expertise in project planning tools such as MS Project (or similar) and concepts such as task dependencies.
• Expertise in Excel (preferred)
• Expertise in best practices around data security
• Expertise using an ITSM tool such as ServiceNow
• Expertise in network architecture and security norms
• Expertise in Information Technology, IT project management or technical project management (more than 10 Years)
• Expertise in managing complex Information Security projects (more than 1 year )