IT Infrastructure Vulnerability Manager
Edenred is a pioneer, a tech leader and the everyday companion for people at work across more than 46 countries.
Our 10,000 employees are committed to making the world of work a better place for all, one that is safer, more efficient and more user-friendly. At Edenred, our passion for customers, respect, imagination, simplicity and entrepreneurial spirit are our values. For anyone who needs to vibe in their professional life, we are the best place for you to work and grow.
The Edenred Digital Center (EDC) in Bucharest, Romania is Edenred Group's largest Digital hub for strategic Tech projects.
Required skills and profile
3+ years of experience in IT security engineering or security architecture
Good knowledge of technical concept and protocol related to Windows/Linux OS, Network, cloud platforms, Active Directory and associated field (PKI, DNS, Azure AD…)
Minimum education level: Bachelor's degree in Security science, Computer Science or related field
Nice to have:
Project Management skills to define/lead activities related to remediation plans
Mandatory: English (Current team split between Paris and Bucharest - all meetings and deliverables must be in English)
Nice to have: Spanish, French or Portuguese
Inquiring, ability to leverage of online resources to understand topics in depth
Ability to see the big picture
Ability to discuss with non-IT profiles
The IT Infrastructure Vulnerability Manager will be reporting directly to the Global Head of Security Operations.
Close to IT Infrastructure and Cloud Team, he defines and contributes to the remediation plan in order to tackle Vulnerability discovered on IT infrastructures and decrease the exposure to the cyber risks, especially by defining/following/supporting the progress on IT remediation plans defined.
He runs the vulnerability tools in place by periodic security scans of internal and external infrastructure to identify systems and applications with unsecure configuration and missing patches.
He works with External parties which are engaged to the discovery of vulnerabilities exposed to Internet.
He performs risk analysis on each advisory and missing patch to determine its applicability and risk, develops plans to either install the security patch or to perform another workaround, if any is available
He is responsible to evaluate the risk and to raise a Risk Acceptance Form by leading the sign-off from the application Owner to the validation of the Security Board.
He acts as security advisor when IT infrastructure and Cloud Team have some questions/concerns related to remediation plans.
He is part of the IT change management process by qualifying the security impact when a change must be validated by the CAB (Change Advisory Board)
He is the chairman of the meetings with IT Infrastructure and Cloud team, he is accountable of the progress of all the topics with the support of all stakeholders, especially by defining/producing the right KPIs
As part of Global IT compliance & security team and depending on his background, he will also be part of some of the many other topics addressed by the Global IT Security community.
Through this position, he will have to work with IT teams in many different BU across the world. It will give him the opportunity to acquire a good understanding of all Edenred’s activities and how they are evolving, giving him many levers to continuity his career within Edenred.
Joining us means:
» Taking part in an ambitious corporate project
» Becoming part of a team that embraced the digitalization challenge and enjoys this transformation every day
» Living our values every day: passions for customers, respect, imagination, simplicity, entrepreneurial spirit.
» You will greatly contribute to build the project that will improve the customers’ experience on an international level
» You will get exposure to various global cultures and teams
» You will be working with the newest technologies to build a new platform from scratch
» We offer you a very pleasant working environment, in the heart of Bucharest
» We also have for you: meal tickets, holiday vouchers, health subscription, flexible hours, work from home, flexible benefits system, on-the-job training & e-learning platforms.
And we do not stop here!