Cybersecurity Engineer : Job Mission
Cybersecurity improvement is a priority for Imerys as it may impact its business, industrial and financial operations, and capacity to collaborate with partners, customers, financial market, shareholders…
Safeguards information system assets by identifying and solving potential and actual security problems. The Security expert guarantees the application of security policy on his specialized domain of activity.
Responsibilities:
- The Security expert guarantees the application of security policy on his specialized domain of activity.
- Accompany and monitor operational declination of security norms.
- Ensure the existence of security standards and organize their validation.
- Participate in the formalization of technical guides.
- Deploy technical solutions.
- Ensure infrastructure risks monitoring and harmonization.
- Accompany projects on his perimeter.
- Ensure alerts monitoring on this perimeter.
- Ensure infrastructure security.
Within the Global Security Operation Center, the Cybersecurity Engineer contributes to the technical leadership for security tools and standards and globally for all Cybersecurity-related questions. He/She has to coordinate technically projects around Security tools.
Positioning and Job Dimension within the organization:
- Reporting to the SOC Team Manager (Information Systems Security Officer).
- Works with application owners to improve the security of new and existing applications.
- Contribute to the alignment of the Cybersecurity of acquired companies to Imerys standards.
Your mission (...if you accept it!):
- As Cybersecurity Engineer, you will be responsible for responding to any security incident (IT & OT).
- You will protect the Imerys brand and reputation against cyber threats by leading proactive actions and surveillance on the web and the dark net.
- You will be administering and implementing the SOC platform (XDR, CTI, Mobile Security Solution …).
- You will run security investigations & queries.
- You will be a strategic contact point for other IT colleagues and end-users.
- You will optimize the cybersecurity program and lead continuous improvement projects.
The little extras of the project:
- You will work in committed and responsive agile teams with peers all around the world.
- You will be involved from start to finish in projects that are both functionally rich and technically ambitious: high volume, high performance, maximum security requirements and many other exciting subjects.
Minimal Competencies Required for the Job:
Professional and technical competencies:
- Previous experience:
- 3 to 6 years technical experiences on Cyber Security and security incident response.
- International exposure.
Technical competencies:
- Extensive knowledge of Security Solutions.
- Extensive knowledge of Cloud technologies (SAAS, PAAS, IAAS, CASB).
- Extensive experience with Endpoint Detection & Response solutions.
- Extensive experience with Security orchestration, Automation and Response (SOAR).
- Firewalls (preferably Palo Alto / Panorama).
- Vulnerability Management (Qualys).
- Patch Management.
- Forensics analysis.
- Global understanding of the whole of Information systems: applications, network, systems, email & collaboration systems, Cybersecurity...
- Good knowledge of mobility tools: devices, mobile device management, mobile applications...
- Knowledge of virtual architecture.
- Security certifications that will have value for the role:
- CEH: Certified Ethical Hacker.
- GCRE: GIAC Certified Forensics Examiner.
- GBFA: GIAC Battlefield Forensics and Acquisition.
- GCIH: GIAC Certified Incident Handler.
- GICSP: Global Industrial Cyber Security Professional.
- GRID: GIAC Response and Industrial Defence.
- GWEB: GIAC Certified Web Application Defender.
- GEVA: GIAC Enterprise Vulnerability Assessor.
- CCSP - Certified Cloud Security Professional.
- GSE: GIAC Security Expert.
- CISSP: Certified Information Systems Security Professional.
Behaviour and managerial competencies:
- Capability to discuss within all organizations / countries in Imerys.
- Ability to interact with several project managers / engineers including senior leadership and peers.
- Ability to work in multicultural environments.
- Ability to organize / coordinate operations around global solutions within a multi-local organization.
- Ability to manage and coordinate projects involving several actors of information systems: hosting, network, applications, systems, security…
- Proactivity and continuous improvement mindset.
- Fluent English.