Senior Security Engineer - Blue Team

will be a blend of reactive and proactive security measures to ensure the safety and integrity of our systems.

Key Responsibilities :

Vulnerability and Incident Management :

Engage in threat intelligence activities to detect new patterns and attacks.

Stay updated with CVEs (Common Vulnerabilities and Exposures) that could impact our infrastructure, and trigger response plans when necessary.

Respond to security incidents, coordinating responses with multiple teams, handling reporting, and managing escalations.

Proactive Security Projects :

Lead hardening efforts across our infrastructure and platforms.

Support / review Platform & Infrastructure design with a security focus

Develop and implement strategies and solutions to prevent incidents and vulnerabilities from impacting our systems.

Detection Engineering :

Craft new detection mechanisms to identify anomalies and potential threats.

Utilize our SIEM system built on ElasticSearch for monitoring and analysis.

Automation and Scripting :

Leverage coding skills to build automation tools and scripts to enhance security operations.

Work closely with teams managing the infrastructure and platform.

Maintain client / provider relationships with the Security Yellow team to ensure the right tools are in place.

Support the compliance team in their mission, providing security insights and assistance.

Who You Are :

Educational Background :

Bachelor's degree in Computer Science, Information Security, or a related field (or equivalent practical experience).

Skills and Experience :

Experience in threat intelligence, incident response, and vulnerability management.

Familiarity with SIEM systems, particularly ElasticSearch.

Coding and scripting capabilities for automation (languages such as Python, Go, Bash, etc.).

Strong analytical skills to assess and respond to security threats.

Effective verbal and written communication skills for collaboration and reporting.

Soft Skills :

Ability to influence without authority to drive security best practices.

Excellent organizational skills to manage multiple tasks and incidents effectively.

Perseverance in continuously improving security measures and tackling complex challenges.

Team Structure and Reporting :

The security group consists of approximately 20 members, divided in 3 teams : a compliance team, a yellow and a Blue team.

The Blue team, focused on security operations, is divided into three specialized pods : Application Security, Digital Workplace, and Platform & Infrastructure.

This position will report to the Devlead.

Collaborate closely with cross-functional teams managing infrastructure and platforms, and support the compliance team in their security-related tasks.