Cloud Security Officer

Since our founding, IDEMIA has been on a mission to unlock the world and make it safer through our cutting-edge identity technologies. Our technology leadership makes us the partner of choice for hundreds of governments and thousands of enterprises in over 180 countries, including some of the biggest and most influential brands in the world. In applying our unique expertise in biometrics and cryptography, we enable our clients to unlock simpler and safer ways to pay, connect, access, identify, travel and protect public places – at scale and in total security.

Our teams work from 5 continents and speak 100+ different languages. We strongly believe that our diversity is a key driver of innovation and performance.

Purpose

We are seeking a highly skilled and experienced Cloud Security Officer to join our team. The ideal candidate will be responsible for reviewing, implementing, and enforcing the security posture of our cloud environments on AWS and Azure. This role requires a deep understanding of cloud security principles, hands-on technical expertise to design and test solutions, and the ability to collaborate effectively across teams. Additionally, the Cloud Security Officer will work closely with the Chief Information Security Officer (CISO) to align cloud security strategies with the organization’s overall security vision and goals. 

The candidate will integrate the CPE (Cloud Platform Engineering) team which mission is to drive the governance of usage of cloud services and to build services to help product and program delivering to the cloud their services  

Key Missions

Key Responsibilities

1. Cloud Security Management:

•  - Assess and enforce security policies, standards, and controls in AWS and Azure environments.  
•  - Continuously monitor and improve the organization’s cloud security posture through audits, assessments, and threat analysis.  
•  - Implement and manage cloud-native security tools, such as AWS Security Hub, Azure Security Center, and also third party solution such as Crowdstrike  

2. Solution Design and Implementation:  

•  - Design secure cloud solutions, addressing key areas like identity and access management (IAM), encryption, network security, and compliance.  
•  - Create detailed architecture diagrams and documentation for proposed solutions.  
•  - Develop and test proof of concepts (POCs) to validate security solutions before full-scale implementation.  
•  - Contribute to development of final solution and coordonate teams  

3. Collaboration with CISO:  

•  - Partner with the CISO to ensure cloud security initiatives align with the broader security strategy and organizational objectives.  
•  - Provide regular updates to the CISO on the cloud security posture, risks, and mitigation plans.  
•  - Assist the CISO in developing long-term security roadmaps for cloud environments.  

4. Incident Response and Monitoring:  

•  - Investigate and respond to security incidents within cloud environments.  
•  - Set up automated alerts and monitoring mechanisms to detect potential vulnerabilities or misconfigurations.  
•  - Collaborate with the IT and security teams to develop and maintain a robust incident response plan.  

5. Compliance and Risk Management:  

•  - Ensure compliance with industry standards such as ISO 27001, GDPR, SOC 2, or similar frameworks.  
•  - Conduct regular risk assessments and provide recommendations for mitigating identified risks.  
•  - Stay informed about the latest regulatory changes and emerging cloud security threats.  

6. Collaboration and Training:  

•  - Work closely with DevOps, IT, and development teams to integrate security best practices into CI/CD pipelines.  
•  - Provide training and awareness programs to internal stakeholders on cloud security.

Profile & Other Information

Required Skills and Qualifications:

 - Proven experience (5 years) in cloud architecture design and operations, with a focus on AWS and Azure.
 - Proven experience (2 years)  in cloud security
 - Strong understanding of cloud architecture, security controls, and best practices.
 - Hands-on experience with tools such as AWS IAM, AWS Security Hub, AWS Firewall manager, Azure Defender, Azure Entra ID, Azure Firewall, etc.
 - Proficiency in scripting or programming languages (e.g., Python, PowerShell, Bash).
 - Experience with automation tools and frameworks (e.g., Terraform, Ansible).
 - Experience with third-party CNAPP  
 - Familiarity with cloud compliance frameworks and risk management principles.
 - Strong problem-solving and analytical skills, with the ability to test and validate solutions through proof of concept.
 - Relevant certifications, such as AWS Certified Security Specialty, Microsoft Certified: Azure Security Engineer Associate, CISSP, or CCSP, are preferred.

Preferred Attributes:

 - Excellent English communication skills, both written and verbal.
 - Ability to work independently and as part of a cross-functional team.
 - Passion for staying updated on the latest cloud security technologies and threats.

Other information

 - Candidate will collaborate with team located in France and with clients from various locations
 - Standard local business hours

By choosing to work at IDEMIA, you will join a unique tech company, offering a wide range of growth opportunities. You will contribute to a safer world, collaborating with an international and global community. We value the diversity of our teams and welcome people from all walks of life, regardless of how they look, where they come from, who they love, or what they think.

We deliver cutting edge, future proof innovation that reach the highest technological standards and we’re transforming, fast, to stay a leader in a world that’s changing fast, too.

At IDEMIA, people can develop their expertise and feel a sense of ownership and empowerment, in a global environment, as part of a company with the ambition and the ability to change the world.

Visit our website to know more about the leader in Identity Technologies

www.idemia.com