IDEMIA, the global leader in Augmented Identity, provides a trusted environment enabling citizens and consumers alike to perform their daily critical activities (such as pay, connect and travel), in the physical as well as digital space.Cerinte
The Software and Technical Authority (STA) Security team wishes to strengthen its expertise by hiring a Security Integrator Engineer. Reporting to the STA Security team manager, the Information Security (IS) Integrator is responsible for the implementation, the documentation, the testing and the support of the information security measures defined by the Security Architect (or project CISO) in accordance with project’s needs. This responsibility applies to all stages of the project’s life cycle. The IS Integrator is expected to have a great understanding of medium to large IT systems and stay up to date with the latest security standards and with security best practices.
Profile and soft skills
-Bachelor Degree in Computer Science or relevant discipline.
-Working experience in at least 2 of the following domains:
-Experience in working on highly secure systems would be an advantage.
-The ability to design a security architecture is a plus
-Autonomous, rigorous, with a high sense of involvement.
-Used to work in international context (fluent English, intercultural skills).
-Knowledgeable in project life cycle to understand the constraints of the deployed solution and the teams, and in order to support them.
-Readiness to work under time constraints and able to adjust quickly to project demands.
-SIEM and Log management: definition of log collection architecture, configuration of local agents, knowledge of the Elastic stack
-SPS Bastion et Access right management
-Digital certificate management (X509v3): definition of certificates, renewal, management of CRLs
-Mutual authentication, TLS, OpenSSL, S/MIME
-System and Network Security:
-O.S. Hardening on Windows, Linux, AIX, Apache Tomcat and Android: Very great knowledge of the CIS benchmark and associated tools
-Right management: Active directory/LDAP, very good knowledge of the GPO
-Antivirus configuration and deployment
-VPN IPSec, VLAN
Along the project stages, the IS Integrator brings support to project teams, by providing security expertize to project integration team. He will be responsible to:
Provide technical guidance and answer technical questions for project integration team on security purpose.
Propose, in accordance with project CISO or security architect, the security controls based on security technologies evaluation; participate / support project team in the detailed design of the solution.
Review architecture on his/her perimeter of expertise; identify possible security threats and identifying areas of weakness; prepare cost estimates.
Implement the security controls identified for a solution.
Prepare/complete security documentation during the design/development/integration/tests stages; establish security guidelines/procedures for operational systems.
Monitor system vulnerabilities on his/her perimeter. Ensure the compliance with the BU policy in term of vulnerability level.
Upgrade security systems by monitoring security environment; identifying security gaps; evaluating and implementing enhancements.
Update job knowledge by tracking and understanding emerging security practices and standards in his/her area of expertise.
Missions to plan, 4 – 5 times a year, with a duration from some days to 3 weeks. Capacity to travel in MEA, APAC, LATAM and Europe zones (air travel).