Cloud Security Engineer

Cloud Security Engineer

"Join us to create secure cloud ecosystems, safeguarding our organization from upcoming vulnerabilities."
(Guillaume. G, Cloud Governance & Architecture Manager) 

CONTEXT

As a Cloud Security Engineer, you will be part of the Governance & Architecture team within the Cloud & DevOps Services department.

You are pivotal in enabling and enhancing our security posture, allowing streamlined and secure cloud development and deployment processes. You participate in designing, implementing, and continuously improving our security frameworks. Your proficiency in secured Cloud & DevOps practices and technologies cultivates collaboration between development and operations teams.

HOW WILL YOU MAKE AN IMPACT?

• Contribute to and enhance a complete stack of solutions for cloud security & DevSecOps management from a people, process, and technology perspective. This includes but is not limited to CSPM, CWP, SAST, secret detection, policy as code, and Infrastructure as Code modules review.
• Provide practical guidance to engineering and project teams to support the implementation of security controls, guidelines, and best practices.
• Be a driving element and enable greater cooperation between product teams, cybersecurity teams, and compliance functions, helping quantify the risk and define relevant control objectives and activities to secure cloud workloads.
• Contribute to cloud security governance (including participating in committees, building dedicated dashboards with associated KPIs, and evangelizing to other teams).
• Be autonomous and proactive; Able to understand functional and technical requirements, identify gaps, and suggest improvements.

HOW WILL YOU EXPERIENCE SUCCESS WITH US?

• Minimum 2-3 years of experience in a cloud environment, with a proven track record in developing and implementing effective cloud security solutions and managing security challenges.
• A deep understanding of cloud providers' services, especially AWS, Alibaba Cloud, or GCP, with one or more cloud certifications such as AWS Certified Security,
• Experience in management and definition of security in the software development lifecycle (SDLC) is a plus.
• Experience with OWASP Testing Guide v3 / 4 and OWASP TOP 10
• Experience in data architecture, protection, and mitigating data exfiltration risks on sensitive data (PII).
• Understanding in container technologies (Kubernetes, Anthos)
• Hands-on technical experience in Security Architecture, Automation & Configuration Management, Integration and Deployment (Terraform),
• Strong verbal and written communication skills and ability to share technical ideas in business-friendly language.
• Fluent in English, with also a good level of French.

HOW DO WE KEEP YOU SMILING?

• In a young and dynamic team environment focusing on personal development (training, conferences, certifications, etc.), you will participate in our Cloud transformation journey at Richemont Group.
• You will work with a multicultural stakeholder (Maison’s and markets) and for a great company in the luxury industry.
• You will be able to participate in Conferences and Summits about cloud providers' technologies and provide guidance and feedback regarding technologies available in the market.
• You will be able to work with an open-minded and self-learner team in a cutting-edge technical environment to provide excellent value to the business.

YOUR JOURNEY WITH US:

1. We will contact you ASAP for an informal introductory call if your application is selected
2. Next steps would be as follows:
   1. Technical interview with Aymeric. P, Cloud Security Team Lead and a Cloud Security Engineer.
   2. If there is a match, you will meet Guillaume. G, Cloud Governance & Architecture Manager, and Aymeric. P
   3. Finally, you will meet Arthur. R, Head of Cloud & DevOps Services, and our HR Manager.