Bonjour,

Description

Notre société est à la recherche d'un consultant sécurité doté de solides compétences en gouvernance et techniques. 

Start: as soon as possible

Location: Paris & remote

Duration: 6 Months+

Responsibilities / Tasks

Primary mission:

Maintain the Application/Systems Perimeter at an adequate level in compliance with the Group standards on Information Security

Provide Security guidance (technical architecture review, security risk analysis, DPIA etc.) and assist the Business, the DPO and IT correspondents throughout projects

Ensure the Business adheres to security recommendations when contracting external providers and establishing Service Level Agreements

Ensure the Business’ current and future applications adhere to the Group standards risk-oriented approach.

Ensure the entity and all internal suppliers properly implement follow-up actions to perpetually improve Network Security

Integrate security into projects’ development and life cycle to improve and optimize the Security Policy

Contribute to furthering a vision and formalizing a policy to address Cloud Security.

Ensure project, infrastructure, application, and 3rd party risks are systematically & appropriately tested

Ensure Operational Security by implementing IT processes, upgrading existing processes and documenting both

Core activities: Assess, challenge and review vulnerabilities criticality to deliver risk-based insights useable by business stakeholders (DPO, workplace). Ensure implementation of follow-up of remediation actions post assessment. Provide support to project and business stakeholders on deficiencies found and remediations to implement

Skills and Profile

Qualification / General Profile

Skills and experience:

7+ years experience in information security years and background in security engineering

Information risk approach and risks analysis experience mandatory

Experience in advisory role on IT security for Business projects a plus.

Experience in managing complex stakeholder relationships mandatory.

Able to explain security challenges and recommendations to non-IT stakeholders and ability to function effectively in a matrix structure

Fluent in English

Information Security and /or Information Technology industry certification (CISSP-ISSAP, CISM, GIAC or equivalent) strongly preferred

If you are interested, please apply with a detailed resume and your rates. 

• Le client: est une SSII spécialisée dans le placement des ressources humaines.
• Type de mission: Freelance en télétravail/en régie