Cybersecurity Architect

Responsibilities
Societe Generale Global Solution Centre (SG GSC)
acts as a business solutions center for Société Générale, one of the largest European financial groups. We provide high quality professional services in over 35 countries in various business areas - Finance & Accounting, HR, IT and Corporate Operations. Our mission is to be a partner of choice, valued for owning, transforming and innovating with best-in-class talent.

Project description:

Société Générale Assurances is the entity of the Société Générale Group that is involved in the fields of insurance (property and personal insurance). This service will be carried out within the "Resource Functions" department, which is notably responsible for IT security for ASSU France and International.

The Cybersecurity Architect contributes to security strategy and IT risk management by defining security policies and guidelines, overseeing controls and associated remediation, and providing consulting support to projects and business areas within their area of responsibility.

Responsibilities
Specifically, you will be required to:

Design:

• Contributes to risk analyses related to technological foundations. It analyzes risks and vulnerabilities in systems and equipment;
• Defines and recommends the reference technical architecture that meets a variety of requirements (features, interoperability, or robustness of information systems, compliance, sustainability, etc.), the needs of the company, and current regulations;
• Develops and updates technical policies, security standards, and associated security solution guides related to its areas of expertise concerning business strategy, IT, and innovation.

Recommendation:

• Implements the appropriate technical recommendations and ensures the follow-up of his recommendations in compliance with established standards;
• Protects the information systems of the company by implementing security processes, particularly patch management. The cybersecurity architect regularly verifies the level of security achieved through compliance and cyber intrusion testing campaigns; Considers and analyzes vulnerabilities and non-compliances and proposes action plans;
• Communicates cybersecurity requirements to various suppliers and/or developers and checks their consideration in the documentation and implementation of subsystems. Ensures proper mastery of solutions by operational teams.

Advice:

• Proactivity in proposing changes to security solutions;
• Promotes the use and combination of existing security components;
• Analyzes security risks associated with the introduction of new technologies or new information systems.

Communication/ Steering

• Contributes to the maturity development of technical architects and planners concerning IT security;
• Collaborates with technical security specialists to provide a comprehensive view of security;
• Represents the entity's security to other security teams within the Group;
• Ensures the planning, organization, and facilitation of workshops and technical meetings with IT stakeholders.

Profile required

• 10-15 years of experience overall in IT, Cybersecurity;
• Knowledge and experience in risk analysis methodologies (e.g.: 27005; EBIOS);
• Knowledge and experience in the following methods: Agile, DevOps, CI/CD, Github/ Gitlab;
• Oral and written communication: French A2/B1, English B2 (Awareness, Reporting);
• Autonomous, pedagogical, curious, with an innovative mindset.

NICE TO HAVE:

• Certifications in technical areas such as Cloud, O365, Big Data, APIs, AI, Automation and blockchain;
• ISO 27001 certification.

Why join us

SG GSC is a Great Place to Work certified company. Here, you will find a flexible workplace and culture, autonomy, constant learning opportunities, dynamism, and talented people, making this experience a real career accelerator. You will also discover all the diversity of our businesses, in a sector that is constantly evolving and innovating.
Plus, you will enjoy all our benefits:

• competitive compensation & remuneration, including annual performance bonus;
• preventive healthcare plan, and group health & life insurance;
• wide range of flexible benefits within a monthly budget;
• office perks, wellbeing and mental health programs;
• various social benefits and bonuses for personal or family events;
• 9-to-5 workday & flexible working environment (Hybrid);
• additional paid and unpaid time off, including Sabbatical leave;
• learning and growth opportunities based on individual development and career plans;
• unlimited access to various eLearning resources.

Business insight

We are convinced that people are drivers of change, and that the world of tomorrow will be shaped by all their initiatives, from the smallest to the most ambitious. Whether you're joining us for a period of months, years, or your entire career, together we can have a positive impact on the future. Creating, daring, innovating, and taking action are part of our DNA.

If you too want to be directly involved, grow in a stimulating and caring environment, feel useful daily and develop or strengthen your expertise, you will feel right at home with us

Still hesitating?

You should know that our employees can dedicate several days per year to solidarity actions during their working hours, including sponsoring people struggling with their orientation or professional integration, participating in the financial education of young apprentices, and sharing their skills with charities. There are many ways to get involved.

We are an equal opportunities employer, and we are proud to make diversity a strength for our company. Societe Generale is committed to recognizing and promoting all talents, regardless of their beliefs, age, disability, parental status, ethnic origin, nationality, sexual or gender identity, sexual orientation, membership of a political, religious, trade union or minority organisation, or any other characteristic that could be subject to discrimination.
Diversity and Inclusion

We are an
equal opportunities employer
and we are proud to make diversity a strength for our company. Societe Generale is committed to recognizing and
promoting all talents
, regardless of their beliefs, age, disability, parental status, ethnic origin, nationality, gender identity, sexual orientation, membership of a political, religious, trade union or minority organisation, or any other characteristic that could be subject to discrimination.