IT Security Officer

LCH SA is seeking a skilled IT Security SecOps to join its IT Security team in Paris. This role focuses on securing LCH SA's IT infrastructure and business applications, controlling protection and detection systems, and managing cybersecurity incidents in coordination with the Security Operations Centre. The ideal candidate will ensure the Information System is secure, resilient, scalable, and highly available, with experience across the cyber security framework, including vulnerability management, incident management, and identity/privileged access management.

Must Have

• Deliver LCH SA cyber security controls' library based on the NIST framework (Identify, Protect, Detect, Respond and Recover)
• Assess and challenge LCH SA cyber security controls performed by outsourcers
• Deliver cyber security service activities within LCH SA, including production and monitoring of SLA and KPI
• Oversee outsourced cyber security services
• Provide support / expertise to other IT Security officers in charge of controls’ execution & assessment
• Perform cyber security checks to ensure no gaps in LCH SA cyber security posture
• Review and challenge changes and problem closures impacting the cyber security profile
• Bachelor’s degree in computer science, Engineering, or a related field
• At least 5 years as a Security Engineer, or similar role, with a focus on controlling Security and Tech solutions in regulated and highly available environment
• Fluent English mandatory
• Mandatory Technology Expertise: Network Security, OS / Databases / Middleware / Applications Security, VMware Cloud Security, Secret Management, Encryption, Vulnerability Management, EDR/AV, IAM/PAM, SIEM / SOC
• Good communication, teamwork and collaboration, problem-solving, adaptability

Good to Have

• Experience as IT / Cyber auditor
• Cyber security certification such as CISSP, GIAC
• Ability to automate some controls by scripting (Python, Perl)

Job Title: IT Security Officer - LCH SA

Role summary

Do you have a passion for cybersecurity & technology? Do you want to make a difference, delivering Cyber Security within some of the biggest companies in the world and a critical player in the Financial markets industry as a CCP (clearing house)?

We are seeking a skilled IT Security SecOps to join LCH SA IT Security team located in Paris. This role aims at securing LCH SA IT infrastructure and Business application, controlling protection & detection systems, and managing cybersecurity incidents in coordination with Security Operations Centre, to ensure LCH SA Information System is secure, resilient, scalable, and highly available. The ideal candidate will have experience in all key aspects of the cyber security framework and related to vulnerability management, cyber incident management, identity and privileged access management, cyber security service management (reporting & dashboards KPI / SLA).

Key responsibilities and accountabilities:

• Deliver the LCH SA cyber security controls’ library by performing checks on the pillars based on the NIST framework (Identify, Protect, Detect, Respond and Recover),
• Assess and challenge the LCH SA cyber security controls performed by the outsourcers,
• Deliver cyber security service activities within LCH SA, in particular production and monitoring of SLA and KPI related to controls activities,
• Oversee the outsourced cyber security services with the outsourcers,
• Provide support / expertise to other IT Security officers in charge of controls’ execution & assessment.

What you'll be doing:

• Delivery of Cyber security controls: Perform cyber security checks to ensure that there are no gaps in the LCH SA cyber security posture (anti-malware coverage, Firewall rules recertification, outstanding vulnerabilities without remediation etc.)
• Enhancement of cyber security controls: Automate some controls by scripting (Python, Perl etc.) to enhance the delivery of the controls (reconciliation between different data sources etc.)
• Assessment of security controls: Assess the outcomes of controls performed by LCH SA outsourcers
• Reporting: Provide providing with SLA and KPI related to controls’ delivery and related identified gaps.
• ITIL cyber security management: Review and challenge the changes, the closure of problems etc. (tech / Business) which may impact on the cyber security profile of the CCP.

You'll bring:

• Education
• Bachelor’s degree in computer science, Engineering, or a related field (or equivalent experience).
• Professional experience
• At least 5 years as a Security Engineer, or similar role, with a focus on controlling Security and Tech solutions in regulated and highly available environment.
• An experience as IT / Cyber auditor will be a plus.
• Cyber security certification will be a plus such as CISSP, GIAC etc.
• Fluent English mandatory, in a context of cooperation across an international Group.
• Mandatory Technology Expertise
• Network Security
• OS / Databases / Middleware / Applications Security
• VMware Cloud Security
• Secret Management
• Encryption
• Vulnerability Management
• EDR/AV
• IAM/PAM
• SIEM / SOC
• Soft Skills
• Good communication
• Teamwork and collaboration
• Problem-Solving
• Adaptability