Cybersecurity Engineer - Risk & Compliance - M/F

Build a future of trust together

Thales is a global leader in high technology specializing in three business sectors: Defense & Security, Aeronautics & Space, and Cyber & Digital. It develops products and solutions that contribute to a safer, more environmentally friendly, and more inclusive world. The Group invests nearly 4 billion euros per year in Research & Development, particularly in key innovation areas such as AI, cybersecurity, quantum, cloud technologies, and 6G. Thales has nearly 81,000 employees in 68 countries.

Our commitments, your benefits

• Success driven by our technological excellence, your experience, and our shared ambition
• An attractive compensation package
• Continuous skills development: training courses, academies, and internal communities
• An inclusive, benevolent environment respecting employee balance
• A recognized societal and environmental commitment

Your daily life

Thales Digital Factory is part of Thales's transformation program, which aims to become an essential and exemplary digital player across all its markets. Our mission is to accelerate the digital transition of the Thales Group by venturing into new ways of working and decision-making.

Within Thales Global Services and the engineering teams, your main missions will be:

• Play a key role in the technical support of infra, cloud, network, and development teams in cybersecurity matters. Advise on best practices, participate in architecture and code reviews, and help select robust technical solutions, while identifying risks and proposing adapted mitigation measures.
• Within the framework of projects, systematically integrate security, notably via DevSecOps and cloud methods. Collaborate with teams from conception to include security requirements, perform risk analyses and security reviews, and pilot the homologation or certification processes of information systems. Also ensure the follow-up and control of security action plans.
• In terms of governance, lead the deployment of the organization's cybersecurity policy. This involves implementing control plans and drafting implementation standards and guides, guaranteeing a high level of homogeneous security within the company.
• Also provide advanced support to operational teams during incidents or investigations, while ensuring constant technical watch. This proactive approach allows informing about new threats and vulnerabilities and adapting recommendations accordingly.
• Finally, contribute to the continuous improvement of cybersecurity practices by defining and updating technical standards, drafting reference documents, and leading training and awareness workshops for teams. This commitment allows for the sustainable evolution of security at Thales.

Your profile:

• Expert in system, network and cloud security (Azure, GCP, Azure Stack)
• Proficiency in application security (OWASP), infrastructures (firewalls, AD, hardening) and risk analysis (EBIOS, ISO 27005).
• Advanced knowledge of DevSecOps processes, cyber threats (TTP) and standards (ANSSI, NIST).
• Effective communication, rigor, autonomy. Certified CISSP, CISM, ISO27001, Azure Security Engineer.

If you recognize yourself, this position is for you, we are waiting for you!

Thales, a Handi-Engaged company, recognizes all talents. Diversity is our best asset. Apply and join us!