- Monthly Compliance: Consider all newly implemented FW rules and verify that they comply with the previously validated request through Local or Group tools (e.g. Tufin DSO)
- Annual Recertification: Conduct an annual recertification of all company or Group Firewall flows impacting a company asset
- Control the proper implementation of security policies as defined by the Group (e.g. Prohibited Protocols)
- Produce a monthly dashboard to track the mission to ensure 100% completion of compliance review and annual recertification each year
- Maintain the link with the security division of business entities security production and risk management teams (CISO/ITRM)
- Be the point of contact and reference for technical and security teams to manage flow validation
- Ensure the coherence of the control process in line with the Group Prod Sec process
- Ensure the achievement of action plan objectives related to the scope (Control coverage rate recertification of prohibited protocols)
- Formalize sufficient procedural framework to guide the execution of operational processes
- Verify the compliance of technical/application flows implemented on security solutions (Compliance Validation and Annual Review of FW rules)
- Alert in case of non-compliance with standards and norms
- Implement necessary dashboards for operational mission tracking
- Organize review and recertification meetings of rules
- Present results to the IT Security Committee
Qualifications :
Tools / technology:
- Firewalls: Checkpoint Fortinet Palo Alto Change management on network layers (600 clusters & standalone)
- Micro-segmentation type solution - Illumio (30k VEN agents on VMs)
- Management of WAF (Web Application Firewall) - Wi-Fi NAC Mobi Max/Mobi Office
- Proxy: McAfee Web Gateway
- F5 Advanced Web Application Firewall (AWAF)
- F5 Big IP Application Security Manager (ASM) Access Policy Manager (APM)
- Wireshark
- Akamai
Environment:
Language skills:
- Fluent in French
- Good command of English both written and spoken
Incident Management:
- Know how to catalog and maintain an incident lifecycle in ServiceNow and how to execute troubleshooting to resolve incidents
Framework / certifications:
- NIST/CIS
- ISO 27001
- Cisco certifications (CCNP CCIE) and F5 appreciated
Methodology:
- Mastery of Agile methodologies (Scrum Kanban)
- Have a DevOps approach
Additional Information :
Benefits:
Full access to foreign language learning platform
Personalized access to tech learning platforms
Tailored workshops and trainings to sustain your growth
Medical Insurance
Meal tickets
Monthly budget to allocate on flexible benefit platform
Access to 7 Card services
Wellbeing activities and gatherings
Remote Work :
No
Employment Type :
Full-time