Bouygues Construction Information Technologies (BYCN IT) is the IT branch of Bouygues Construction, a global player in the building, civil works, energies and services sectors. Bouygues Construction operates at all points of the value chain of projects: finance, design, construction and facilities management (operation and maintenance). On every continent, our employees devise and develop solutions that help improve the environment and everybody’s lives.
We are looking forward to cooperating with talented and motivated people.
As part of Bouygues Construction, the mission of BYCN IT is to provide the members of Bouygues Construction with IT services of high quality fitting with their businesses and to deploy solutions to improve communication and people collaboration through worldwide network. BYCN IT has offices in France, Morocco and Vietnam.
Job Description
Looking for unknown weaknesses and investigating on less known parts of the IS which will sometimes be realized with the Blue Team to gain better vision.
Advise remediation to operational teams to found vulnerabilities and raise security awareness among them in order to reduce the IS security risks.
Lead several technical and operational security assessments in different environments inside Bouygues’ Information System (IS).
Lead OSINT projects to find public vulnerabilities in Bouygues’ IS.
Our Requirements
Cyber Security skills:
Be able to identify the risk for the business or familiar with Common Vulnerability Scoring System (CVSS).
Good to have CEH/GWAPT/CompTIA Security+ or similar skills.
Understand vulnerabilities assessment report, the context and hypothesis of their exploitation for better security risk assessment. Be able to advise on vulnerability remediation or mitigation.
Technical watch: stay up to date on new vulnerabilities, new attacks ways, new attack vectors and patching state.
Familiar with any Security Standard like OWASP/CIS/NIST/MITRE…
Strong knowledge about basic Security Concepts.
Be able to lead OSINT projects and crawl the web to find public vulnerabilities on Bouygues’ IS.
You prefer to be a Web Security Tester /RED Team player or having experience as BLUE Team member (want to change career path).
Define and lead the operational tests and regular checks, automate and industrialize scanning processes.
Experience with security tool:
Scanning tool.
Audit tool.
Assessment tool.
Request/response capture tool (Web app testing).
Profile requirements:
The knowledge of audit methodologies is a plus.
French is a big plus.
Security knowledge on Web, OS, infra, Mobile applications and network.
Knowledge of different security tools, their pros and their cons.
Autonomous on the projects you lead.
Fluent in English.
Bachelor graduated in Network Engineering.
Capable to communicate about advances and troubles on projects and audits.
Development knowledge with the OS (Python, bash, PowerShell).
3 or 5 years experience in cybersecurity.
General Skills
Rigorous, concerned for the quality.
Autonomous.
Good resolving problem and writing skills.
Analyzing needs and constrains.
Good interpersonal skill.
Team and collaborative spirit.
Methodical/ Organized/ Open minded.
Customer service orientation:
Assisting/advising team service.
Strong aptitude for understanding the user process.
Helping to structure the request.
What We Offer?
Professional, Open- minded and Creative Environment:
Respect different perspectives.
International, friendly, proactive, supportive workplace.
Great teamwork with Agile mindset.
Strong sharing culture to improve individual development.
Individual Development:
Be oriented and empowered for individual, team and organization goals.
Online internal learning hub with various categories in software skill, soft skills, language skill.
Extensive training and in- depth knowledge sharing sessions.
Career and personal development plan for each individual.
Special Care for Employee:
100% salary on probationary period.
15 annual leave days + 6 sick leave days (plus 1 annual leave day for 3- year working).
Dell laptop and external monitor for your work.
Sport, personal activities sponsor.
Work from home 2 days/ week.
Up to 2- month performance bonus.
Annual teambuilding activities and company trip.
Annual health check- up and premium health insurance for employee.
