Tribe Security Officer H/F - HELPLINE

Et si vous choisissiez plus qu'un simple job ?

Entreprise française des Services du Numérique (ESN), HELPLINE accompagne depuis 1994 les directions informatiques et métiers dans leurs projets de transformation autour des nouveaux usages et outils numériques. La société affiche une croissance régulière (207 M€ en 2022) grâce à 3600 spécialistes qui opèrent dans 6 pays en France et à l'international (Allemagne, Belgique, Italie, Roumanie, Tunisie) avec 16 bureaux.

Chez HELPLINE, nous donnons du sens et de la valeur à votre mission et à vos compétences. Notre réussite est avant tout celle de nos équipes : notre culture d'entreprise repose sur l'intelligence collective, l'innovation et l'esprit entrepreneurial.

Ces informations résonnent en vous ? Rejoignez-nous !As part of the Agile transformation of the IT department we are looking for a skilled Information Security specialist who will BE in charge of addressing security, continuity and IT Risk topics within the perimeter of a tribe. A tribe being a team of up to 100 members organized in agile and who design, develop, test and maintain a portfolio of business software applications.

Main missions :
- Analyze software designs and implementations from a security and continuity perspective and contributes to identifying and to resolving development issues with the help of the security champion.
- Evaluate the compliance of the products against the security and continuity policies.
- Ensure that IT risks are identified and maintained at an acceptable level for the organization.
- Report on the security level of the perimeter

Considered as a local CISO for the perimeter he/she is in charge of, the Tribe Security Officer will have the following main activities :
- Ensure deployment of the Arval security and continuity policies in the tribe.
- Influence business decisions in a manner that is consistent with security goals and objectives.
- Ensure applications are onboarded in security tools when eligible (SAST, AVS, PENTESTS, SCA, ANON)
- Promote security by design and by default principles and contribute to software designs and architectures
- Occasionnally assist the team in troubleshooting and debugging security issues that arise and lead transversal vulnerability remediation taskforces.
- Contributes to the agile events (Sprint Planning and Backlog Review) anytime a strong focus on security is required
- Provide a reporting on the security level / vulnerabilities of software applications in his/her perimeter to the CoE IT Risk and Cyber Security
- Share best practices with the IT Risk & Cyber security central team and with other tribe security officers
- Follow-up continuity tests and exercises.
- Support the team for evaluating / formalizing the IT risks and the measures to mitigate them
- Follow-up identified remediation plans
- Provide reporting on IT risks to the tribe and escalate risks according to their level.
- Assemble evidences for internal control plan and audits

Vous avez au moins 5 ans minimum d'expérience dans ce domaine et une appétence pour la cybersécurité, ce poste vous permettra de continuer à monter en compétence sur le management mais aussi sur l'environnement cybersécurité.