From design to production, you contribute to securing, automating, and continuously improving cloud infrastructures, CI/CD pipelines, and security operations. You work closely with security experts, DevOps engineers, and architects to build and operate a resilient, observable, and secure AWS environment.

You collaborate directly with the Security Manager and CTO to:

·         Define cyberattack scenarios, propose remediation strategies, and implement automated response workflows using SOAR platforms.

·         Design, develop, and deploy secure connectors and integrations with third-party services and security tools.

·         Support the SOC team by improving detection capabilities, incident response accuracy, and mean time to response (MTTR).

·         Produce automated, reliable, and actionable security and operational reports for internal teams and customers.

Key Responsibilities

DevSecOps & Automation

·         Manage security-centric projects end-to-end: architecture, implementation, deployment, monitoring, and maintenance.

·         Embed security controls into CI/CD pipelines (GitLab CI/CD) including:

o SAST, DAST, SCA

o Secrets detection

o IaC scanning (Terraform / CloudFormation)

·         Continuously challenge and improve deployment methodologies, tooling, and automation practices.

·         Apply security-by-design and shift-left principles across the SDLC.

Cloud & AWS Security

·         Secure AWS environments using native services:

o IAM, VPC, CloudTrail, CloudWatch, GuardDuty, Security Hub, WAF, KMS, Config

·         Implement least-privilege access, network segmentation, encryption, logging, monitoring, and alerting.

·         Build and maintain secure infrastructure as code (Terraform / CloudFormation).

·         Contribute to scalable, cost-efficient, and secure cloud architectures aligned with AWS best practices.

Observability, Monitoring & Performance

·         Design and operate observability stacks using:

o  Grafana for dashboards and alerting

o  Prometheus / CloudWatch for metrics

o  Pyroscope for continuous profiling and performance analysis

·         Correlate security events, logs, metrics, and traces to improve threat detection and incident analysis.

·         Provide visibility into application behavior, performance bottlenecks, and anomalous activities.

SOC & Incident Response

·         Assist SOC teams by answering security and platform-related questions.

·         Improve incident response workflows and automation to reduce response time and false positives.

·         Participate in incident investigations, post-mortems, and remediation plans.

·         Integrate SOC tooling with CI/CD and cloud platforms.

Internal Security & Compliance

·         Improve platform security maturity in line with industry best practices.

·         Strengthen security integration within the development lifecycle (DevSecOps).

·         Ensure compliance with ISO 27001 requirements and maintain a tightly secured operational environment.

·         Participate in risk assessments, internal audits, and continuous improvement initiatives.

R&D and Continuous Improvement

·         Benchmark new security frameworks, DevSecOps tools, and cloud-native services.

·         Contribute to R&D initiatives focused on:

o  Security automation

o  Detection & response

o  Observability and performance security

·         Produce technical documentation, security architectures, and operational procedures.

Technical Environment (Example)

·         Cloud: AWS

·         CI/CD: GitLab CI/CD

·         IaC: Terraform, CloudFormation

·         Observability: Grafana, Prometheus, CloudWatch, Pyroscope

·         Security: SOAR, SIEM, WAF, IAM, SAST/DAST/SCA

·         Compliance: ISO 27001

·         2+ years of experience in SecDevOps / Cloud Security.

·         Strong hands-on experience with AWS security services.

·         Solid knowledge of CI/CD security, observability, incident response, and automation.

·         Ability to work across security, development, and operations teams.

·         Fluent in English and in French

·         Remote : one day a week (thursday)

You will meet :

-          Issam, our Team Lead, to assess your technical skills (tests may be required).

-          Adil, our Country Manager

-          and Maud, our HR Director, to discuss your motivations for joining us, your goals and aspirations!

Please note that an additional interview may be conducted with one of the other members of the management committee.