Cybersecurity DevSecOps Analyst

Since our founding, IDEMIA has been on a mission to unlock the world and make it safer through our cutting-edge identity technologies. Our technology leadership makes us the partner of choice for hundreds of governments and thousands of enterprises in over 180 countries, including some of the biggest and most influential brands in the world. In applying our unique expertise in biometrics and cryptography, we enable our clients to unlock simpler and safer ways to pay, connect, access, identify, travel and protect public places – at scale and in total security.

Our teams work from 5 continents and speak 100+ different languages. We strongly believe that our diversity is a key driver of innovation and performance.

Purpose

To support project teams in setting-up and using DevSecOps tools, to develop internal DevSecOps tooling, to analyze and report on DevSecOps tools results.

Key Missions

• You will assist, support, and guide project teams in understanding, analyzing, tracking, and remediating vulnerabilities detected by automated tools (e.g. SAST, SCA) and document this process and its conclusions in a formal report.
• You will guide project teams towards using DevSecOps tools and methods, and participate in their implementation, usage deployment, and day-to-day use.
• You will participate to projects aiming to improve the general level of security within the IPS company division, by using your experience and capacity of analysis.
  This may be by documenting and formalizing processes, methods, guides, trainings related to cybersecurity, as well as by driving or participating to cybersecurity-related automation and scripting tasks.
• You will participate in the setup of third party or custom tools related to DevSecOps (general scripting).
• You will participate to the evaluation, review, selection, mapping, and setup of security tooling.
• You will coordinate with other cybersecurity teams (pentest, architecture, security officers) to be able to efficiently investigate and propose remediations to security issues.

Profile & Other Information

• You have at least 2-3 years’ experience in application security and/or vulnerability management related subjects.
• You have a good understanding of SAST, SCA and DAST tools to automate the detection of security issues.
• You have a good understanding of Software development lifecycle in an Agile environment, and you understand DevOps very well.
• You are up to date on recent industry standards in the area of software development: programming languages, technologies, standard tools and platforms. (Jenkins, Gitlab, Docker…)
• You have experience in the development of applications and knowledge of technologies used in an agile / DevOps environment.
• You have at least an intermediate level in software development (e.g. Python, Java, C++, JS, etc.).
• You are able to work, learn, and investigate subjects autonomously.
• Read, written, and spoken English is mandatory.
• Good communication skills and ability to communicate with non-experts. 

By choosing to work at IDEMIA, you will join a unique tech company, offering a wide range of growth opportunities. You will contribute to a safer world, collaborating with an international and global community. We value the diversity of our teams and welcome people from all walks of life, regardless of how they look, where they come from, who they love, or what they think.

We deliver cutting edge, future proof innovation that reach the highest technological standards and we’re transforming, fast, to stay a leader in a world that’s changing fast, too.

At IDEMIA, people can develop their expertise and feel a sense of ownership and empowerment, in a global environment, as part of a company with the ambition and the ability to change the world.

Visit our website to know more about the leader in Identity Technologies

www.idemia.com