Informations générales

Entité de rattachement

Nous rejoindre, c'est intégrer une entreprise d'envergure mondiale. Mû par la recherche permanente de l'innovation et de l'excellence, pionnier et leader des technologies propres et de la mobilité durable, le Groupe entend rester à la pointe des grandes tendances qui font bouger le monde.

Fort de son efficience, de son agilité et de son esprit d'équipe, le Groupe fait preuve d'exigence et d'audace pour définir la mobilité de demain.

Pour réussir ces transformations, l'entreprise a besoin de tous les talents. Rejoignez-nous !

Chez Stellantis, nous évaluons les candidats selon leurs qualifications, leurs mérites et les besoins du métier. Nous accueillons les candidatures des personnes de tout genre, âge, ethnie, nationalité, religion, orientation sexuelle, et handicap. La diversité de nos équipes nous permettra de mieux appréhender l'évolution des besoins de nos clients et de notre environnement futur.  

Référence

2022-12786  

Description du poste

Filière/Métier

ICT, Digital & Data - ICT, Digital & Data

Intitulé du poste

IT Security Architect H/F

Contrat

CDI

Statut

Cadre

Description de la mission

The Security Architect plays a crucial role in ensuring the Confidentiality, Integrity, and Availability of the entire IT assets, on premise and in the cloud, for the international group Stellantis. He will research, design, and advocate next-generation technologies, architectures, and security components that meet the security requirements of the company, its customers, its business partners and vendors. He will also support studies to improve existing solutions in conformity with the Security Policy and contribute to the development of the medium-term strategic plan.

The security architect will fulfill the above responsibilities within the IT & Digital Global CISO department to ensure a secure and regulatory technical architecture for the Stellantis enterprise.

Within an IT Security central entity and under the CISO authority, the mission focuses especially on:
• Ensure a permanent technological watch about cyber threats and associated countermeasures;
• Define improvements needed for the protection and detection;
• Search and evaluate simple components or complex assembly, make prototypes, document and provide decision elements;
• Define the framework for the use of solutions and validate them with the CISO;
• Contribute to the development of the strategic technical architecture plan according to the security needs, international standards and regulations;
• Contribute to security policy, standards, and guidelines;
• Advise the design teams on technical choices to comply with security rules;
• Coordinate teams in charge of infrastructure layers about security needs or concerns;
• Participate in the change management process;
• Contribute to the implementation of mutualized solutions;
• Ensure functional responsibility and expertise on security components or services provided for IT teams;
• Lead the capitalization of the perimeter for CISO and IT teams;
• Promote the transfer of skills to all ICT teams;
• Contribute to technical analysis and response plan in case of security incident.

Profil

• 5 year cybersecurity and IT Infrastructure experience
• Bachelor degree, preferred Bachelor of Science in a technical concentration (Computer Science, MIS preferred)
• Strong Technical Leadership and hands-on management over an endpoint security program
• Proven success in contributing to a team-oriented environment
• Nice to have: Cybersecurity certifications (CISSP or equivalent certifications).

• Desire to work in an information systems environment and a security team
• Strong commitment to customer service and service enablement
• Proven success in contributing to a team-oriented environment
• Proven ability to work creatively and analytically in a problem-solving environment
• Detail-oriented, with excellent analytical, technical and problem-solving skills
• Demonstrated leadership in professional setting
• Excellent communication (Fluent English, written/spoken) with end-users, business owners, developers, managers and site reliability engineers
• Exposure to governance, reporting and escalation best practices
• Demonstrated teamwork and collaboration in a professional setting
• Able to meet requirements for retaining professional security certifications
• Experience writing technical documentation for a technical audience
• Rigor in project management and the application of standards

Technical Skills Requirements
• Excellent skills and experience in security technologies for endpoints (workstations, servers, smartphones…), networks, and large architecture (On-prem and Cloud).
• know-how in the operational implementation of the security policy on the layers and components of the architecture (Network protocols, Firewall, IPS/IDS, AV, EDR, GPO…). Must have: Microsoft Windows technologies and Cloud. Nice to have: Unix and Smartphones technologies.
• Knowledge of cyber threat actors, attack vectors and attacker techniques in order to find detection, protection and remediation solutions
• Know-how in the analysis and management of ICT risks
• Security cryptography fundamentals - PKI, certificates, encryption, signatures, authentication, and authorization.
• Advanced knowledge of security concepts and their implementation for cloud environments (AWS preferred, including networking, VPCs, VGWs, DNS…).

After adaptation period Home office will be possible up to 15 days for month.

Localisation du poste

Pays

Europe, France

Ville

Critères candidat

Niveau d'expérience min. requis

5 à 10 ans

Langues

Anglais (C1 - Courant (3,5 - 4,4 Bright))