The Cyber Security Expert defines and implements the technical security measures for all or part of the projects under his responsibility, in accordance with the information systems and security policy, as well as current regulations. As an expert in his field, he plays a role in monitoring (particularly technological), providing advice, assistance, information, training, and raising awareness about IT risks

Units of work :

• Provide security expertise to support operational teams in the daily management of security issues, advising them on best practices, procedures to follow, and appropriate responses to security incidents. Ensure coordination and technical support to guarantee that security measures are properly implemented and maintained.
• Implement the "Security by Design" approach: integrate security principles from the design phase into all IT projects to ensure robust and proactive protection of systems and data.
• Risk Management: Perform regular risk assessments, vulnerability analyses, and penetration tests to identify potential threats and recommend corrective actions.
• Manage security solution implementation projects and ensure monitoring during the RUN phase (EDR, DLP, Vulnerability Management, SIEM...).
• Monitor the execution of security action plans and continuity plans.
• Contribute to the design and adaptation of the information systems (IS) security policy and ensure its deployment across the organization.
• Audit and ensure that security practices comply with relevant local and international regulations, including data security standards and privacy requirements.
• Research innovative solutions to address challenges introduced by new technologies or infrastructure changes.
• Audit compliance with IT security standards imposed on the company's subcontractors.
• Analysis and Reporting: Produce regular reports on security incidents, risk assessments, and improvements to the security posture, and present these reports to various stakeholders.

Skills :

• Excellent understanding of cybersecurity principles, data protection technologies, and risk management tools.
• State Engineer, CyberSecurity /Networks/Telecoms: Experience : 8 years and more in the field of IT security
• Master the requirements of security standards and frameworks such as PCI DSS, ISO 27001, ISO 22301
• Certifications: CISA, CISM, CISSP, or equivalent
• Certifications: ISO 27001 LI, LA, and/or RM
• Certification CEH or OSCP
• Project management and change management
• Mastery of attack techniques and penetration testing (Pentest)
• Ability to create concise summaries
• Collaborate effectively
• Strong organizational skills
• Ability to maintain confidentiality
• Strong writings skills