This role is based in our security team.

Reporting directly to the Head of Security CoE, the Security Architect ensures that the security aspects of the IS are properly taken into account in the design and implementation of a business project. He also assists the product manager and the IT tech lead on these aspects and monitors the results and ensures that the technical and technological choices made for IT and business projects comply with the company's security requirements. The Security Project Manager is the technical authority on security architectures, defines security models and supports the development of security architectures, in accordance with the company's security strategy and policies.

WE ARE LOOKING FOR A PERSON CAPABLE OF:

• Analyze security needs and carry out security risk analysis of the project; 
• Verify that the technical and functional solutions proposed meet the identified security requirements;
• Define additional security measures to address risks;
• Initiate evaluations, tests or audits related to IS security;
• Contribute to the qualification of residual security risks before deployment;
• Establish the information security architecture strategy in accordance with the overall company strategy and contribute to the principles of the global security model;
• Develop architectural reference models;
• Contribute to the translation of security policies into operational security standards;
• Support project managers in designing the architecture, specifying the different parameters and defining the technical security requirements for the integration of new systems or the upgrade of existing systems; 
• Advise on the choice of technical solutions and recommend secure architectures;
• Regularly review existing architecture, identify gaps and make recommendations to improve security;
• Advise on the use and combination of existing security bricks;
• Analyze security risks linked to the introduction of new technologies or new information systems;
• Monitor new threats and take them into account when defining security architectures;
• Report any discovery of risk of interest to the CISO;
• Contribute to the execution of the company's cybersecurity program;
• Build and maintain synergies and strong interaction with the OpSec function.

UNE PERSONNE QUI A :

• Une expérience avérée à travers la sécurité de l'information ;
• Une expérience confirmée en matière d'architecture de sécurité ;
• Une connaissance approfondie des solutions de sécurité AWS ;
• Une connaissance approfondie des méthodologies et technologies de sécurité des applications web ;
• La capacité à travailler de manière transversale au sein de l'organisation ;
• Une solides compétences en gestion de projet ;
• Une maîtrise de l'anglais (à minima dans un contexte professionnel).