Cision France

Security Engineer I

Cision France

full-time

Posted on:

Location Type: Remote

Location: Remote • 🇧🇬 Bulgaria

Visit company website
AI Apply
Apply

Salary

💰 BGN 37,754 - BGN 46,000 per year

Job Level

Mid-LevelSenior

Tech Stack

AnsibleAWSAzureCloudFirewallsGoogle Cloud PlatformJavaPythonTerraform

About the role

  • Security Engineering & Architecture: Must have expertise in designing, implementing, and maintaining security architectures across cloud, third-party, and on-premises environments, including evaluating and integrating emerging security technologies.
  • DevSecOps: Should possess deep knowledge of embedding security within CI/CD pipelines, establishing security standards, and conducting secure code reviews with development teams.
  • Cryptography: Must understand encryption technologies for securing data at rest and in transit, with experience managing cryptographic keys and ensuring compliance with industry standards.
  • Identity & Authentication: Requires knowledge of designing and managing secure identity solutions, including Single Sign-On (SSO), Identity Providers (IdPs), and federation protocols such as SAML, OAuth, and OpenID Connect. Familiarity with Okta and Keycloak preferred.
  • Secure Coding: Should be proficient in secure coding practices, training teams, and developing standards to prevent vulnerabilities like injection flaws, XSS, and authentication issues.
  • Governance, Risk, & Compliance (GRC): Must have a strong grasp of GRC frameworks (e.g., NIST, SOC2, ISO 27001, Cyber Essentials etc) and experience in aligning technical controls with regulatory and audit requirements.
  • Threat Management: Requires expertise in performing risk assessments, threat modeling, vulnerability assessments, and mitigation planning to address security risks.
  • Incident Response & Monitoring: Should have knowledge of incident response strategies, SOC collaboration, and implementing continuous monitoring tools to ensure compliance and security standards.
  • Collaboration & Leadership: Must demonstrate the ability to work with cross-functional teams, mentor junior engineers, and act as a subject matter expert in security technologies, tools, and frameworks.

Requirements

  • Deep understanding of security standards and frameworks such as NIST, ISO 27001, CIS Controls, and industry compliance regulations (GDPR, HIPAA, PCI-DSS).
  • Hands-on experience with security tools such as IDS/IPS, SIEM, vulnerability scanners, and penetration testing platforms.
  • Experience with cloud platforms (AWS, Azure, GCP, OCI or Alibaba) and securing cloud-native applications.
  • Proficiency in programming languages (e.g., Python, Java, C++) and automation tools (e.g., Terraform, Ansible).
  • Strong knowledge of networking protocols, firewalls, VPNs, proxies, and security monitoring tools.
  • 5+ years of relevant experience in security engineering and GRC-focused security solutions development.
  • Extensive hands-on experience in DevSecOps, integrating security in CI/CD pipelines, and supporting development teams in secure coding practices.
  • Proven expertise in cryptography, including encryption, key management, and digital signatures.
Benefits
  • Flexible work arrangements
  • Professional development

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard skills
security architectureDevSecOpscryptographysecure codingrisk assessmentsincident responsenetworking protocolsprogramming languagesautomation toolsvulnerability assessments
Soft skills
collaborationleadershipmentoringcommunication
Certifications
NISTISO 27001SOC2Cyber EssentialsGDPRHIPAAPCI-DSS