Security Architect

Be part of our Security team

Reporting directly to the Head of Security, the Security Architect ensures that the security aspects of the IS are taken into account in the design and implementation of a business project. He or she also assists the product manager and IT tech lead with these aspects, checks the results and ensures that the technical and technological choices made for IT and business projects comply with the company's security requirements. The Security Project Manager is the technical authority on security architectures, defines security models and supports the development of security architectures in line with the company's security strategy and policies.

WE ARE LOOKING FOR SOMEONE WHO CAN:

• Analysing security requirements and carrying out a security risk analysis for the project;
• Check that the technical and functional solutions proposed meet the security requirements identified;
• Define additional security measures to address the risks;
• Initiate assessments, tests or audits relating to IS security;
• Contributing to the qualification of residual security risks prior to deployment;
• Establishing the information security architecture strategy in line with the company's overall strategy and contributing to the principles of the global security model;
• Develop architecture reference models;
• Contribute to the translation of security policies into operational security standards;
• Supporting project managers in designing the architecture, specifying the various parameters and defining the technical security requirements for integrating new systems or upgrading existing systems;
• Advise on the choice of technical solutions and recommend secure architectures;
• Regularly reviewing the existing architecture, identifying gaps and making recommendations to improve security;
• Advising on the use and combination of existing security bricks;
• Analysing the security risks associated with the introduction of new technologies or information systems;
• Monitor new threats and take them into account when defining security architectures;
• Report any risks of interest to the CISO;
• Contribute to the implementation of the company's cybersecurity programme;
• Build and maintain synergies and strong interaction with the OpSec function.

Requirements

A PERSON WHO HAS :

Proven experience in information security;
Proven experience in security architecture;
In-depth knowledge of AWS security solutions;
In-depth knowledge of web application security methodologies and technologies;
The ability to work transversally within the organisation;
Strong project management skills;
Fluency in English (at least in a professional context).