Empowering our Clients with People-Driven Digital Innovation Across Europe
We are a Group managing digital IT services and solutions, driven by people, innovation, agility, and deep industry insight. We are working with the largest private and public institutions to deliver IT services and solutions.
Being an entrepreneurial digital services group with a Human-Sized Tech Company, we are built by passionate experts and led by seasoned leaders in IT and digital transformation.
This role blends hands-on firewall and filtering management with incident response, network security architecture, and continuous improvement of filtering policies, in a highly complex and dynamic enterprise environment.
- Identity Management: Responsible for managing employee and partner identities and authorizations for access to the bank's systems and data.
- Supervision & Control: Responsible for monitoring and analyzing signals generated by various security devices and, if necessary, responding appropriately to cyber incidents.
- Vulnerability Management & Follow-up: Responsible for detecting vulnerabilities and technical non-compliance, and organizing and monitoring remediation deployment.
- Network Filtering: Responsible for implementing flow filtering policies via security devices (WAF, FW, Proxy, and DDoS) for BGL's critical systems.
- Data Protection & Encryption: Responsible for maintaining an inventory of encryption keys and certificates, ensuring data protection, and detecting security events on the network. Also ensures IT implementations are security-compliant.
- Implementing firewall flows on various filtering devices according to validated requests via tools like Tufin or DSO.
- Ensuring proper deployment of Group and Local Security Policies on FW, Proxy, and WAF devices.
- Partnering with projects and ITRM teams to implement flows, including application flows.
- Conducting technical investigations needed to resolve incidents or blockages.
- Scope of Application: All Filtering Security solutions (Firewall, Router, Proxy, WAF, etc.).
- Implement filtering rules on all filtering equipment (Firewall, Router, Proxy, WAF, etc.) in compliance with current security policies and the "Firewall Request Management" procedure.
- Act as liaison with the business units’ security departments, security production teams, and technical architecture teams to evolve risk analysis matrices in line with needs and automation goals.
- Serve as the technical point of contact for vendors to manage the filtering solutions/products.
- Promote and implement security best practices, be proactive in proposing and developing continuous improvement initiatives.
- Operationally implement security policies for filtering tools.
- Manage incidents within scope, including continuous monitoring of solutions.
- Configure the tools within their scope.
- Ensure the longevity of technical solutions and manage obsolescence.
- Ensure proper application functioning, maintainability, and scalability (Access, Logs, Monitoring).
- Analyze and fix functional or technical anomalies reported by users of operational security solutions.
- Handle version upgrades and evolutions, maintaining consistency across the application landscape.
-
Ensure achievement of action plan objectives in their area (availability rate, incident resolution time, etc.).
- Formalize procedural frameworks to support operational processes.
-
Incident Management:
-
Ability to document and track incident lifecycle in ServiceNow.
Ability to perform troubleshooting to resolve incidents.
-
Frameworks / Certifications:
-
NIST / CIS
-
ISO 27001
-
Cisco Certifications (CCNP, CCIE) and F5 certifications are a plus
-
Tools / Technologies:
-
Firewalls: Checkpoint, Fortinet, Palo Alto (Change management on network layers: 600+ clusters & standalones)
-
Micro-segmentation (e.g., Illumio – 30k VEN agents on VMs)
-
WAF (Web Application Firewall) Management – WiFi, NAC, MobiMax/MobiOffice
-
Incident resolution or contribution to production and security incident resolution
-
Consulting and support (projects, audits, etc.) – contribute to projects enhancing network security
-
Proxy: McAfee Web Gateway
-
F5 AWAF (Advanced Web Application Firewall)
-
F5 BigIP + ASM (Application Security Manager) + APM (Access Policy Manager)
-
Wireshark
-
Akamai
-
Environments:
-
Linux
-
Windows
-
Cloud
-
Methodology:
-
Proficiency in Agile methodologies (Scrum, Kanban)
-
DevOps-oriented mindset
-
Teamwork and collaboration
-
Curiosity and willingness to learn
-
Adaptability
-
Fluent in French
-
Good command of written and spoken English
- Competitive salary and the opportunity to have a meaningful job where you can make a difference
- The chance to continuously evolve as a professional
- Medical insurance & Meal tickets. Variety of training opportunities
Join Us at EASYDO
With a team of 250 dedicated professionals, we combine technological excellence with a people-first culture. We
believe in empowering talent, nurturing careers, and building long-term trust with our clients and our teams
Contacts
Contact our Talent Team by email to [email protected]
Or visit our careers portal: www.easydo.co/career