InterCloud is looking for a Senior Security Engineer.

In a transversal team, you report to the CISO, lead the internal security, contribute to strengthening the security of the product and InterCloud Security Expertise.

Your missions will include:

Manage the Security Operations Center & the internal CERT

• Challenge the cyber-attack detection use cases
• Handle complex (L3) alerts & security incidents
• Improve InterCloud’s maturity in security detection & monitoring
• Contribute to the cyber security
• Assess risks and ensure ISO 27001 requirements are met
• Contribute to identity governance by defining pragmatic processes and implementing relevant technical solutions
• Improve vulnerability management processes and contribute to technical upgrade actions
• Support and second the CISO in operations

Coach & develop the security expertise
Internally:

• Infuse security into each department, from engineering to marketing going through IT support / collaborate with every department to make sure their daily ops are compliant with security guidelines
• Provide IT support to infuse knowledge and best practices, from engineering to marketing
• Participate actively into technical POC
• Strengthen the integration of security into the development lifecycle
• Coach key operational stakeholders by demonstrating good security practices, showing them how to assess and correct security vulnerabilities and helping them develop secure software with constructive inputs.
• Produce technical specifications and associated operating procedures
• Own the technical products of InterCloud’s security portfolio

Externally:

• Promote Intercloud’s expertise on the market
• Build the appropriate capabilities to detect and answer to cyberattacks targeting Intercloud or its clients

More information:
Senior position located in Paris or Malaga - 2/3 days onsite
Starting date if possible ASAP

This role is made for you if, you have/are :

• A taste for sharing, leading, by making her/his colleagues aware of good security practices and by supporting her/his proposals with good examples
• You know how to lead projects and also qualify, prioritize issues, and handle them in a diplomatic, pragmatic way.
• Inventive and demanding, you like to look for security flaws in software. You may have already participated in bug bounty programs yourself

Requirements:
Hard skills:

• Project management
• Good knowledge of Security Standard ISO 27k Family
• Proven experience in operational security using EDR , NDR, WAF , SWG
• Experience with CSIRT / CERT
• Offensive security skills ( WebApp and Infrastructure)
• DevSecOps and DevOps Knowledge,
• Good understanding of automation scripting (for instance with Powershell, Bash, Python, etc …)
• English fluent a must & French a plus
• Any certification in ISO or Security is a plus

Soft skills:

• Pedagogue & good communication / Diplomatic / Pragmatic / Inventive & Proactivite / Demanding / Flexible

• First Call (30 min)
• First interview : CISO (1h)
• Second interview : member of the team (1h)
• Third interview : HR Manager (45min)