Security Engineer

Company Description

Publicis Groupe is one of the "Big Four" agency companies, alongside WPP, Interpublic and Omnicom. It has operations in over 200 cities in 100+ countries and around 80,000 employees. Re:Sources is Publicis’ support organisation to centralise the finance, administrative, legal, tax, IT, procurement and property functions and leave the units, e.g. agencies, to do what they do best in terms of looking after the client's business. Our team, called rOar, resides in Re:Sources UK. Our clients are the agencies within the Publicis Groupe. We create innovative SaaS solutions to meet their administrative needs. We build complex functioning but simple interfacing solutions such as project management, resource management, time sheeting, pricing, etc. tools. We use a mixture of third-party services and fully custom applications. We require a Senior Devops Engineer to ensure our custom applications are deployed and hosted in a secure, robust, scalable, pragmatic and realistic Azure setup.

Job Description

The Security Engineer for Re: Sources Global Security Organization (GSO), part of the overall Publicis Groupe, is responsible for orchestrating Publicis Groupe-wide security engineering operations and functions. The role must be able to translate the IT-risk requirements and constraints of the agencies into technical control requirements and specifications. Maintain and analyze web application firewall data and cloud security platforms.

Essential Duties and Responsibilities:

• On call rotation

• Diagram high level infrastructure reference architecture and controls for engineering, operations, and management reference

• Provide technical expertise to the risk management team to assess technical risk

• Identify opportunities for process improvement to meet and exceed customer service expectations and improve overall risk posture

• Utilize Threat Intelligence and Threat Models to create threat hypotheses

• Prepare project documentation (guides, configuration documents, etc.)

• Firewall rule analysis and firewall request approvals

• Lead and provide clear guidance to multiple teams, ensuring results are aligned with business objectives and within planned timelines

• Broad technical background with a knowledge-base in network security, and web applications

• Establish relationships with various security technology and service vendors

• Good working knowledge of various security technologies such as network and application firewalls, CNAPP and SSPM, and XDR systems

• Expertise in network, host, and cloud-based analysis and investigation

• Analyze and correlate threat assessment data

• Tuning WAF, CNAPP, SSPM

• Analyze network/security logs, root cause analysis

• Prior experience with ThreatX Web Application Firewall

• Prior experience with Wiz CNAPP • Prior experience with Adaptive shield SSPM

• Extensive knowledge and experience working with a data centric environment, traditional datacenters and virtualized environments

• System integration, administration, documentation, change control