Cybersecurity Engineer

Job location:
Paris, France
Created moment:
March 21, 2024
Job reference:
REQ - 08055

The Company


The world’s leading supplier of mineral-based specialty solutions for industry with 14,000 employees, operations in more than 40 countries, and €4.3 billion in revenue in 2022.
Imerys delivers high-value-added, functional solutions to a great number of sectors, from processing industries to consumer goods. The Group draws on its understanding of applications, technological knowledge and expertise in material science to deliver solutions by beneficiating its mineral resources, synthetic minerals and formulations. Imerys’ solutions contribute essential properties to customers’ products and their performance, including heat resistance, hardness, conductivity, opacity, durability, purity, lightness, filtration, absorption and water repellency. Imerys is determined to develop responsibly, in particular by fostering the emergence of environmentally-friendly products and processes.
If you want to grow your skills and develop your career, find out more at www.imerys.com

The Position

Cybersecurity Engineer

Job Summary

Cybersecurity improvement is a priority for Imerys as it may impacts its business, industrial and financial operations, and capacity to collaborate with partners, customers, financial market, shareholders…

Safeguards information system assets by identifying and solving potential and actual security problems. The Security expert guarantees the application of security policy on his specialised domain of activity. 

The security engineer takes the following responsibilities :

Security Policy

  • The Security expert guarantees the application of security policy on his specialized domain of activity 

  • Accompany and monitor operational declination of security norms 

  • Ensure the existence of security standards and organize their validation

  • Participate to the formalization of technical guides 

  • Deploys technical solutions 

  • Ensure infrastructure risks monitoring and harmonization

  • Accompany projects on his perimeter 

  • Ensure alerts monitoring on this perimeter 

  • Ensure infrastructure security 

Within the Global Security Operation Center, The Cybersecurity Engineer contributes to the technical leadership for security tools and standards and globally for all Cybersecurity related questions. He/She has to coordinate technically projects around Security tools

Positioning and Job Dimension within the organization

  • Reporting to the SOC Team Manager (Information Systems Security Officer)

  • Works with applications owners to improve the security of new and existing applications.

  • Contribute to the alignment of the Cybersecurity of acquired companies to Imerys standards. 

Systems scope and dimension:

  • Mail System: Google-Workspace 11,000 mailboxes

  • Collaboratives Tools: Lumapps 15,000 users, Google Drive 12,000 users

  • Mobility: Google MDM & Lookout 5,400 devices

  • Firewalls: Palo Alto NGFW

  • Endpoint Detection & Response: Cortex xDR & XSOAR

  • Treat Intel: World Watch, Recorded Future

  • Vulnerability Management: Qualys VMDR

  • IAM: Okta

  • IT Service Management: ServiceNow

  • Web Filtering: Non-Explicit Proxy

  • Patch Management: BMC

  • Privileged Access Management: Beyondtrust

  • Asset Management: 11,500 Workstations, 1400 Servers, 300 Cloud Servers

  • Log Monitoring: xDR, Firewalls, Web Filtering, AD DC’s, DHCP, DNS, Okta, Wireless, Mobile, Cloudtrail

Your mission

  • As Cybersecurity Engineer, you will be responsible to respond to any security incident (IT & OT),

  • You will protect the Imerys brand and reputation against cyber threats by leading proactive actions and surveillance on the web and the dark net.

  • You will be administering and implementing the SOC platform (XDR, CTI, Mobile Security Solution …)

  • You'll run security investigations & queries

  • You'll be a strategic contact point for other IT colleagues and end-users

  • You will optimise the cybersecurity program and lead continuous improvement projects.

The little extras of the project :

  • You'll work in committed and responsive agile teams with peers all around the world.

  • You'll be involved from start to finish in projects that are both functionally rich and technically ambitious: high volume, high performance, maximum security requirements and many other exciting subjects.

Professional and technical competencies:

Previous experience

  • 3 years technical minimum of experiences on Cyber Security and security incident response 

  • International exposure

Technical competencies

  • Extensive knowledge of Security Solutions

  • Extensive knowledge of Cloud technologies (SAAS, PAAS, IAAS, CASB)

  • Extensive experience with Endpoint Detection & Response solutions

  • Extensive experience with Security orchestration, Automation and Response (SOAR)

  • Firewalls (preferably Palo Alto/Panorama)

  • Vulnerability Management (Qualys)

  • Patch Management

  • Forensics analysis

  • Global understanding on the whole of Information systems: applications, network, systems, email & collaboration systems, Cybersecurity...

  • Good knowledge on mobility tools: devices, mobile device management, mobile applications...

  • Knowledge on virtual architecture

  • Security certifications that will have value for role:

    • CEH: Certified Ethical Hacker

    • GCRE: GIAC Certified Forensics Examiner

    • GBFA: GIAC Battlefield Forensics and Acquisition

    • GCIH: GIAC Certified Incident Handler

    • GICSP: Global Industrial Cyber Security Professional

    • GRID: GIAC Response and Industrial Defence

    • GWEB: GIAC Certified Web Application Defender

    • GEVA: GIAC Enterprise Vulnerability Assessor

    • CCSP - Certified Cloud Security Professional

    • GSE: GIAC Security Expert

    • CISSP: Certified Information Systems Security Professional

  

Behaviour and managerial competencies:

  • Capability to discuss within all organizations/countries in Imerys

  • Ability to interact with several project managers/engineers including senior leadership and peers

  • Ability to work in multicultural environments

  • Ability to organize/coordinate operations around global solutions within a multi local organization

  • Ability to manage and coordinate projects involving several actors of information systems: hosting, network, applications, systems, security…

  • Proactivity and continuous improvement mindset

 

Position Type

Full time

and

Permanent

Only technical issues will be monitored through the below inbox:

recruiting.support@ imerys.com

PLEASE DO NOT SUBMIT RESUMES OR APPLICATIONS TO THIS EMAIL, AS THEY WILL NOT BE REVIEWED. 

To ensure fairness and legal compliance in our recruitment processes, only applications received through the online application process will be considered. 

IMERYS is an Affirmative Action and Equal Opportunity Employer and it is our policy to not discriminate against any employee or applicant for employment because of race, color, religion, sex, national origin, age, marital status, sexual orientation, gender identity, genetic information, disability, veteran status, or any other status protected by federal, state or local laws.