CyberDefense Application Security expert

Nous sommes SThree. Le partenaire mondial des talents spécialisés dans les STEM.

Nous mettons en relation des spécialistes recherchés en sciences, technologies, ingénierie et mathématiques avec des organisations dynamiques grâce à nos différentes marques (Computer Futures, Huxley et Real Staffing)

Nous recrutons des professionnels hautement qualifiés - contractuels ou permanents - quand et où ils sont nécessaires.

En réunissant des personnes compétentes, nous élevons le niveau d'expertise et accélérons le progrès pour tous. C'est ainsi que nous construisons l'avenir.

The Service will do the following:

Specific duties will include but not limited to:

• Be the main technical point of contact on the Project/Program to support on the various activities.
• Working with project managers to overcome issues, ensuring the project is being executed to the agreed timeline.
• Prepare the POC with PaloAlto module and the success criteria grid
• Explore improvment of security analysis of Infra as a Code module
• Coordinate activities with the various stakeholders (entity, the group Product, third parties involved, etc)
• Build up the acceptance test plans.
• Verify execution of the tasks, tests and validate the results.
• Controlling what has been effectively implemented (Vs. design)
• Write, review and validate technical deliverables
• Propose optimizations (quick wins, tactical solution, long term solution).
• Ensure any risks identified are managed / mitigated
• Report to the project/program manager on status, risks and forecast
• Manage non-technical activities if requested.

Deliverable

• Technical documentation
• Remediation plan
• Activity reports
• Assessment document
• Gap analysis
• Acceptance tests

Requirements

• Minimum of 5 years of experience in application security, with a focus on secure development and integration.



• Knowledge of security tools and technologies such as PaloAlto, and security solutions for Infrastructure as Code (IaC) analysis.



• Experience with DevSecOps practices, including integrating security into the software development lifecycle



• Ability to work closely with project managers to ensure the successful execution of tasks and adherence to timelines.

• English is mandatory

Context:

Cyberdefense is leading a Major Program to secure by design the group entities worldwide into a set of their application CICD.

As part of the program, the group is looking for the service of an external Technical Expert responsible to create and deploy the technical activities, validating all technical implementation and documentation.