Security Analyst

Societe Generale Global Solution Centre (SG GSC) acts as a business solutions center for Société Générale, one of the largest European financial groups. We provide high quality professional services in over 35 countries in various business areas - Finance & Accounting, HR, IT and Corporate Operations. Our mission is to be a partner of choice, valued for owning, transforming and innovating with best-in-class talent.

Within the Société Générale group, you will join the IT security team. The department offers a full range of products and services to meet the needs of individual, professional and corporate clients in Life Insurance Savings, Retirement Savings and Personal Protection.

The Security Team  plays a key role in preventing data leakages, defending the entity from cyberattacks, conducting processes and best practices to put at safe place the sensitive data.

 Specifically, you will be required to:

     This position is open for candidates with little previous experience as cybersecurity analysts, as well as for people interested in a reconversion process, but with an important previous experience as a risk analyst, technical project manager, software developer, technical analyst, or network specialist to ensure a successful transition to the role.

• The responsibilities expected for this role are managed in the operation security team:
• Perform security risk analyses (following Group methodologies) on business projects, including suppliers and partners:
•  Ensure the integration of security into business projects by performing a risk analysis (determine security requirements, residual risks, etc.);
•  Raise awareness among partners/suppliers of the importance and need to comply with the security framework of SG; synthesize information in a clear and easily readable format for partners/suppliers and ensure that safety expectations are well understood;
•   Understand the business context and needs of each supplier/partner; act diplomatically to build strong business relationships with these stakeholders;
•  Perform security assessments of applications based on the Application Security Assessment (ASA) Group methodology based on input from business process owners;
•  Require the implementation of safety measures such as penetration testing and integrate the results into risk analysis.
•   Ensure and negotiate when required compliance of security contractual clauses signed by ASSU with third parties.
• Provide advice:
• -on security topics.
• -in the processing of requests for derogation from the Group’s security policies, regarding website -access, application installation, usage of external storage solutions (USB). etc
• -for other security requests (e.g. opening of flows);
• Contribute to the GDPR program, application and data security (Risk analysis, security document update, business restitution).
• Contribute to the verification and evaluation of suppliers (partners, contractors, etc.);
• Contribute to the monthly and quarterly reporting by updating the golden source documents ;
• Propose ideas for improving or optimizing internal procedures and methodologies to make them more effective or better suited to our challenges.

• Graduate / Post Graduate;
• Fluency in French (B2) and English (B2) is a must;
• Previous experience as a risk analyst, technical project manager, software developer, technical analyst, or network specialist;
• Understanding and interest in the security domain – alerts, vulnerabilities, access controls;
• Demonstration of autonomy and proactiveness;
• Good interpersonal skills as well as the ability to communicate effectively orally and in writing;
• Attention to details;
• Challenging skills to be able to qualify properly anomalies;
• Basic experience in using JIRA;
• Basic knowledge on SIEM tools;
• Team spirit skills.

SG GSC is a Great Place to Work® certified company. Here, you will find a flexible workplace and culture, autonomy, constant learning opportunities, dynamism, and talented people, making this experience a real career accelerator. You will also discover all the diversity of our businesses, in a sector that is constantly evolving and innovating.

Plus, you will enjoy all our benefits:

• competitive compensation & remuneration, including annual performance bonus; 
• preventive healthcare plan, and group health & life insurance; 
• wide range of flexible benefits within a monthly budget; 
• office perks, wellbeing and mental health programs; 
• various social benefits and bonuses for personal or family events; 
• 9-to-5 workday & flexible (Hybrid) work;
• additional paid and unpaid time off, including Sabbatical leave; 
• learning and growth opportunities based on individual development and career plans; 
• unlimited access to various eLearning resources. 

We are convinced that people are drivers of change, and that the world of tomorrow will be shaped by all their initiatives, from the smallest to the most ambitious. Whether you’re joining us for a period of months, years, or your entire career, together we can have a positive impact on the future. Creating, daring, innovating, and taking action are part of our DNA.

If you too want to be directly involved, grow in a stimulating and caring environment, feel useful daily and develop or strengthen your expertise, you will feel right at home with us!

Still hesitating?

You should know that our employees can dedicate several days per year to solidarity actions during their working hours, including sponsoring people struggling with their orientation or professional integration, participating in the financial education of young apprentices, and sharing their skills with charities. There are many ways to get involved.

We are an equal opportunities employer, and we are proud to make diversity a strength for our company. Societe Generale is committed to recognizing and promoting all talents, regardless of their beliefs, age, disability, parental status, ethnic origin, nationality, sexual or gender identity, sexual orientation, membership of a political, religious, trade union or minority organization, or any other characteristic that could be subject to discrimination.