Application Security Architect

il y a 1 mois

Paris, France Entreprise Confidentielle Temps plein

Application Security Architect / for the Group Tech & Data - Financial Services Sector Industry


Short Summary

The Tech & Data department provides products, services, and support to all Group worldwide. Its 2 key challenges today are to successfully implement its new Target Operating Model (TOM), to be supported by an ambitious pluri-annual internalization plan to deliver innovative products and services to its clients.


The Tech & Data organization is an Agile matricial organization relying on 4 pillars:

· Data and System Engineering, made of the following teams : Data Center of Excellence, Products and Systems Engineering and Enterprise Architecture

· Management & Control (M&C) & Corporate Systems, made of teams supporting Crews and Transversal Functional Domains: Governance, T&D Operating Model Implementation, Security & Compliance, Financial Control, Sourcing & Vendor Management, Governance, and Processes

· Technical, made of teams dedicated to IT Operations, Network, Cloud, Workplace & Cloud Productivity Services

· Crews and Transversal Functional Domains

Crews are supported by Chapters (System Engineering, Architecture, DevOps, …) and both Technical and M&C-C teams are fully dedicated to the delivery of Company products, services and support.


An Application Security Architect is responsible for designing and implementing secure software solutions for an organization.

They work closely with development teams to ensure that applications are built with security in mind from the ground up. This includes conducting security assessments, defining security requirements, and implementing secure coding practices. The Application Security Architect also keeps up-to-date with the latest threats and vulnerabilities and applies this knowledge to ensure that the organization's applications remain secure over time. Ultimately, the role of the Application Security Architect is to help the organization develop and maintain secure applications that protect the confidentiality, integrity, and availability of sensitive information.


Job Summary

  • Develop and maintain security architecture standards (Cloud infrastructures and APIs) and promote their adoption within IT functional teams.
  • Participate in the review and definition of life cycle of Software Development or SaaS Integration, in alignment with Comapny IT Internal Control and Security state of the art’s best practices based on OWASP standards (i.e., Software Assurance Maturity Model (SAMM), Application Security Verification Standard (ASVS), Top 10 proactive controls, Web Security Testing Guide (STG), Cheat Sheet Series, …).
  • Define and maintain standard operational security standards
  • Promote and drive adoption of network security practices across the enterprise
  • Develop metrics and dashboards of the current state of the program, incidents, and overall operational effectiveness
  • Define and maintain standard security configurations of technical solutions ensuring availability, integrity, data protection and privacy of Business applications.
  • Review current system security measures on Business applications and recommend enhancements according to new established security standards.
  • Support IT teams to implement remediation of security findings raised into security audits of Business applications.


Key duties and responsibilities

  • Develop and maintain security architecture standards (Cloud infrastructures and APIs) and promote their adoption within IT functional teams.
  • Support the operational security excellence manager in the definition and continuous improvement of standard security configurations of technical solutions ensuring availability, integrity, data protection and privacy of Business applications.
  • Establish Security view on all key Business applications and provide security recommendations enhancements according to new established security standards.
  • Support IT Functional teams to implement remediation of security findings raised into security audits.


Required experience & competencies


Master degree in Computer Science or related field required

Must adhere our Key Security Principles and Team Values:

Security Principles: Defend the business, Support the business and promote responsible information security behavior.

Team values: Professionalism, Ethic, Transparency and Team Spirit.


English : fluent


Hard skills


Five years of Software development experience with strong security constraints.


· Knowledge of Hybrid installations of SCCM, IAM, MDM

· Knowledge of clouds than MS is a plus

· Windows Defender ATP, Windows Defender cloud App security, and Windows Defender for Identity is a plus

· In depth knowledge of Windows Services (DNS, Print, Fileserver, DHCP, Group Policies)

· PowerShell / or other scripting languages (Azure API and other scripts)

· Experience with modern authentication mechanisms

· Experience in networking/protocols/proxy/security devices

· Strong Security Software development knowledge/experience

· Good background on Project Management within IT functional teams

· Good Information Security and Risk assessment skills

· Good Cross platform and technology knowledge

· Good Knowledge of information security-related technologies and products


Permanent contract & Full time

Location : Paris

2 days offsite (télétravail)

  • Application Security Architect

    il y a 5 jours

    Paris, Île-de-France Entreprise Confidentielle Temps plein

    Application Security Architect / for the Group Tech & Data - Financial Services Sector IndustryShort SummaryThe Tech & Data department provides products, services, and support to all Group worldwide. Its 2 key challenges today are to successfully implement its new Target Operating Model (TOM), to be supported by an ambitious pluri-annual internalization plan...

  • Security Architect

    il y a 5 jours

    Paris, Île-de-France Immowelt AG Temps plein

    You'll be joining one of the world?s largest privately owned real estate tech companies and a subsidiary of Axel Springer.Our mission is to unlock everyone?s perfect place You'll work across some of Europe?s best known digital real estate brands including:Meilleurs Agents, Groupe SeLoger, Immoweb, Realo, Immowelt, Neuraum and Yad2.You?re most...

  • Application Security Architect

    il y a 3 semaines

    Paris, France Entreprise Confidentielle Temps plein

    Application Security Architect / for the Group Tech & Data - Financial Services Sector Industry The Tech & Data department provides products, services, and support to all Group worldwide. Its 2 key challenges today are to successfully implement its new Target Operating Model (TOM), to be supported by an ambitious pluri-annual internalization plan to...

  • Application Security Architect

    il y a 3 semaines

    Paris, France Entreprise Confidentielle Temps plein

    Application Security Architect / for the Group Tech & Data - Financial Services Sector Industry Short Summary The Tech & Data department provides products, services, and support to all Group worldwide. Its 2 key challenges today are to successfully implement its new Target Operating Model (TOM), to be supported by an ambitious pluri-annual internalization...

  • Application Security Architect

    il y a 3 semaines

    Paris, France Entreprise Confidentielle Temps plein

    Application Security Architect / for the Group Tech & Data - Financial Services Sector IndustryShort SummaryThe Tech & Data department provides products, services, and support to all Group worldwide. Its 2 key challenges today are to successfully implement its new Target Operating Model (TOM), to be supported by an ambitious pluri-annual internalization plan...

  • Security Architect

    il y a 4 semaines

    Paris, France Ledger Temps plein

    We're making the world of digital assets accessible and secure for everyone. Join the mission.  Founded in 2014, Ledger is the global platform for digital assets and Web3. Over 20% of the world’s crypto assets are secured through our Ledger Nanos. Headquartered in Paris and Vierzon, with offices in UK, US, Switzerland and Singapore, Ledger has a team of...

  • Security Architect

    il y a 3 semaines

    Paris, France Ledger Temps plein

    We're making the world of digital assets accessible and secure for everyone. Join the mission.  Founded in 2014, Ledger is the global platform for digital assets and Web3. Over 20% of the world’s crypto assets are secured through our Ledger Nanos. Headquartered in Paris and Vierzon, with offices in UK, US, Switzerland and Singapore, Ledger has a team of...

  • Security Architect

    il y a 4 semaines

    Paris, France Ledger Temps plein

    **We're making the world of digital assets accessible and secure for everyone. Join the mission.** Founded in 2014, Ledger is the global platform for digital assets and Web3. Over 20% of the world’s crypto assets are secured through our Ledger Nanos. Headquartered in Paris and Vierzon, with offices in UK, US, Switzerland and Singapore, Ledger has a team...

  • Security Architect

    il y a 1 jour

    Paris, France Ledger Temps plein

    **We're making the world of digital assets accessible and secure for everyone. Join the mission.** Founded in 2014, Ledger is the global platform for digital assets and Web3. Over 20% of the world’s crypto assets are secured through our Ledger Nanos. Headquartered in Paris and Vierzon, with offices in UK, US, Switzerland and Singapore, Ledger has a team...

  • Product Security Architect

    il y a 2 semaines

    Paris, France ChargePoint Temps plein

    **About Us**: With electric vehicles expected to be nearly 30% of new vehicle sales by 2025 and more than 50% by 2040, electric mobility is becoming a reality. ChargePoint (NYSE: CHPT) is at the center of this revolution, powering one of the world's leading EV charging networks and a comprehensive set of hardware, software and mobile solutions for every...

  • Security Architect Dcp

    il y a 3 semaines

    Paris, France XL Catlin Temps plein

    **Flexible Work Eligible**: Flexible Work Schedule **DISCOVER your opportunity** **Security Architect** Europe / UK In line with the AXA Group’s Driving Progress 2023 strategy and ambition to develop an innovative, transversal solution to help us better serve our customers, AXA’s Management Committee recently announced a new strategic initiative -...

  • Cloud Data Security Architect

    il y a 5 jours

    Paris, Île-de-France emagine Consulting Temps plein

    The missions of the Architect are to: Provide technical guidance and advice as the Data & Digital Security Subject Matter Expert on architecture, design and configuration to define secure, scalable and resilient cloud and on-premise data architecture Perform security assessments of Azure data architectures and services Contribute in the definition of...

  • Security Architect H/F

    il y a 4 semaines

    PARIS, 75000, Ile-de-France Ledger Temps plein

    The Security Architect role at Ledger represents the cornerstone of our cybersecurity framework, serving as the definitive expert and go-to resource for all matters related to network architecture, segmentation, isolation, systems hardening and security framework expert. Tasked with the critical responsibility of designing and refining the security...

  • Security Architect F

    il y a 5 jours

    Paris, Île-de-France Decathlon Temps plein

    A ce titre, nous recherchons notre prochain Security Architect, directement intégré à notre équipe Security Advice Office. Cette équipe accompagne les équipes Decathlon Digital sur des sujets de sécurisation de l'infrastructure, des plateformes ou des applications de Decathlon.TA FUTURE CONTRIBUTION- Accompagner les équipes Decathlon Digital en les...

  • Security Architect, AXA DCP

    il y a 1 mois

    Paris, France AXA Group Temps plein

    Security Architect Europe / UK In line with the AXA Group’s Driving Progress 2023 strategy and ambition to develop an innovative, transversal solution to help us better serve our customers, AXA’s Management Committee recently announced a new strategic initiative - Digital Commercial Platform (DCP) – designed to transform AXA’s value proposition....

  • Cloud Data Security Architect

    il y a 1 mois

    Paris, France emagine Consulting Temps plein

    The missions of the Architect are to: Provide technical guidance and advice as the Data & Digital Security Subject Matter Expert on architecture, design and configuration to define secure, scalable and resilient cloud and on-premise data architecture Perform security assessments of Azure data architectures and services Contribute in the definition...

  • Solution Sercurity Architect

    il y a 7 jours

    Paris, France Ubisoft Temps plein

    **Company Description** Ubisoft’s 19,000 team members, working across more than 30 countries around the world, are bound by a common mission to enrich players’ lives with original and memorable gaming experiences. Their dedication and talent have brought to life many acclaimed franchises such as Assassin’s Creed, Far Cry, Watch Dogs, Just Dance,...

  • Cyber Security Architect

    il y a 4 semaines

    Paris, France emagine Consulting Temps plein

    Industry : Banking Rate : up to 54 EUR/h (depending on the experience) Experience level:  5+ years Work location:  Remote Workload:  hours / month (part-time offer) Start date:  03.06. Contract duration : till the end of (there may be a possibility of extension) REQUIREMENTS: German language - C1 Qualys experience ...

  • Cyber Security Architect

    il y a 3 semaines

    Paris, France emagine Consulting Temps plein

    Industry : Banking Rate : up to 54 EUR/h (depending on the experience) Experience level:  5+ years Work location:  Remote Workload:  hours / month (part-time offer) Start date:  03.06. Contract duration : till the end of (there may be a possibility of extension) REQUIREMENTS: German language - C1 Qualys experience ...

  • Application Security Architect

    il y a 2 semaines

    Paris, France Oliver James Associates Temps plein

    Vous serez en charge de la maintenance et du développement des standards de sécurité de l'architecture (Cloud et API), de participer à la revue et la définition des cycles de vie et de l'alignement avec les standards de sécurité internes du groupe et des standards OWASP. Vous évoluerez dans un contexte technologique particulièrement riche et...