Security Engineer I

Job not on LinkedIn

November 13

Apply Now

Receive Emails with Similar Jobs

Cision France

WebsiteLinkedInAll Job Openings

B2B • Media • Marketing

Cision France is a leading communications firm that specializes in public relations, media monitoring, and digital marketing solutions. They support over 50,000 communicators in enhancing brand visibility and influence within the media landscape by providing actionable insights and reliable information. Their comprehensive services include media database management, press release distribution, media intelligence, and analytics to help organizations effectively reach their audiences and assess the impact of their communication strategies.

1001 - 5000 employees

Founded 1867

🤝 B2B

📱 Media

📋 Description

• Security Engineering & Architecture: Must have expertise in designing, implementing, and maintaining security architectures across cloud, third-party, and on-premises environments, including evaluating and integrating emerging security technologies. • DevSecOps: Should possess deep knowledge of embedding security within CI/CD pipelines, establishing security standards, and conducting secure code reviews with development teams. • Cryptography: Must understand encryption technologies for securing data at rest and in transit, with experience managing cryptographic keys and ensuring compliance with industry standards. • Identity & Authentication: Requires knowledge of designing and managing secure identity solutions, including Single Sign-On (SSO), Identity Providers (IdPs), and federation protocols such as SAML, OAuth, and OpenID Connect. Familiarity with Okta and Keycloak preferred. • Secure Coding: Should be proficient in secure coding practices, training teams, and developing standards to prevent vulnerabilities like injection flaws, XSS, and authentication issues. • Governance, Risk, & Compliance (GRC): Must have a strong grasp of GRC frameworks (e.g., NIST, SOC2, ISO 27001, Cyber Essentials etc) and experience in aligning technical controls with regulatory and audit requirements. • Threat Management: Requires expertise in performing risk assessments, threat modeling, vulnerability assessments, and mitigation planning to address security risks. • Incident Response & Monitoring: Should have knowledge of incident response strategies, SOC collaboration, and implementing continuous monitoring tools to ensure compliance and security standards. • Collaboration & Leadership: Must demonstrate the ability to work with cross-functional teams, mentor junior engineers, and act as a subject matter expert in security technologies, tools, and frameworks.

🎯 Requirements

• Deep understanding of security standards and frameworks such as NIST, ISO 27001, CIS Controls, and industry compliance regulations (GDPR, HIPAA, PCI-DSS). • Hands-on experience with security tools such as IDS/IPS, SIEM, vulnerability scanners, and penetration testing platforms. • Experience with cloud platforms (AWS, Azure, GCP, OCI or Alibaba) and securing cloud-native applications. • Proficiency in programming languages (e.g., Python, Java, C++) and automation tools (e.g., Terraform, Ansible). • Strong knowledge of networking protocols, firewalls, VPNs, proxies, and security monitoring tools. • 5+ years of relevant experience in security engineering and GRC-focused security solutions development. • Extensive hands-on experience in DevSecOps, integrating security in CI/CD pipelines, and supporting development teams in secure coding practices. • Proven expertise in cryptography, including encryption, key management, and digital signatures.