Security and Infrastructure Engineer

• Formal Education: bachelor's or master's degree in computer science, Cybersecurity, or related field.
• Professional Experience: Minimum of 2 to 5 years in a similar role.
• Certifications: CISSP, CISM, CEH, CompTIA Security+, or other relevant certifications are preferred.

• Assess and enhance IT infrastructure security continually.
• Implement and maintain security solutions (EDR, EPP, …).
• Manage security patch lifecycle for all systems and softwares.
• Conduct system hardening activities and apply security baselines.
• Monitor security events and maintain KPIs.
• Perform regular security audits and contribute to corrective action plans.
• Educate users on security best practices.
• Oversee the vulnerability management process from end to end.
• Manage Active Directory efficiently, including security and optimization.

• Manage and monitor all installed systems and infrastructure.
• Install, configure, test and maintain operating systems and system management tools.
• Proactively ensure the highest levels of systems and infrastructure availability.
• Write and maintain custom scripts to increase system efficiency and lower the human intervention time on any tasks.
• Participate in the design of information and operational support systems.
• Provide 2nd and 3rd level support.
• Manage Microsoft Windows servers.
• Responsible for day-to-day administration duties including Windows Active Directory object maintenance,
• conducts complex troubleshooting and repair tasks on Active Directory, Windows Server, Domain Controllers, DNS, user authentication and other operational systems as needed.
• Provides technical review of existing implementations and administrative practices (account and network administration, GPOs, OUs, DNS, etc.).
• Advanced skill set for: TCP/IP, DNS, DHCP, DFS.
• Administers Users, Group and Computer objects and create Group Policy using Group Policy Management Console.
• Good analytical, problem-solving, and troubleshooting skills
• Strong technical knowledge of all products and services (Microsoft, VMware, etc..).
• Run Operations and Maintenance tasks for various Windows services.
• Windows Failover Clustering, File Services, DFS

• Patch Management: Expertise in managing system and application vulnerability patches.
• Knowledge of EDR and EPP Solutions: Proficiency in deploying and managing Endpoint Detection and Response (EDR) and Endpoint Protection Platform (EPP).
• System Hardening: Ability to strengthen operating systems, applications, and networks following best practices and security standards.
• Security Baseline and Recommendations: Skill in establishing and applying security guidelines for information systems, alongside providing security recommendations.
• Windows System Troubleshooting: Extensive experience in diagnosing and resolving complex Windows environment issues.
• IT Audit Knowledge: Capability to prepare for, support, and respond to IT audits effectively.
• Vulnerability Management: Expertise in identifying, evaluating, treating, and reporting IT environment vulnerabilities.
• Active Directory Skills: Advanced management of Active Directory, including policy management, authentication, and role-based access control.
• Knowledge in Vulnerability Assessment: Proficient in conducting vulnerability assessments to identify security weaknesses.
• Familiarity with Security Tools: Experience with security tools used for vulnerability assessment and management.
• Knowledge about PingCastle: Understanding of PingCastle for auditing and hardening Active Directory environments.
• Ability to learn innovative technologies.

• Communication: Effective communication skills, both oral and written.
• Analytical Ability: Exceptional problem-solving and analytical skills.
• Teamwork: Ability to collaborate effectively within a team.
• Language Proficiency: Fluent in technical English.

ODDO BHF