Security Technical Auditor

Security Technical Auditor

Context

Security is also representing a key priority for Orange Group executive committee as a major security breach could potentially threaten the business revenue and margin of the group, damage the value of the brand, or lead to legal disputes. Within the Chief Technical Info Office (CTIO), the Security team is accountable for defining and implementing the Orange Business security strategies.

The Global Policy Controls team animates and monitors Orange Business Security, relying on a community of actors in charge of the Security of their own entity or domain. The Global Policy Controls team defines the Orange Business sectorial security policies (global security management, physical security, security incidents, vulnerability, security audit management, Information Security Management System) in line with Orange Group security policies and manages the OBS Security Referential. The team manages main processes or activities such as security Derogation management, Vulnerability management; security Crisis management, Suppliers security management, Products Security, including Risks management.

Mission

-        As a Security Technical Auditor, you should perform technical security assessments of ITN environments. You propose and perform different types of audits depending on the target (penetration tests, code audit, configuration review, etc.). The role is to identify vulnerabilities and propose remediation actions with the responsible entities. Vulnerabilities should be properly managed within the ITN environment. The auditor proposes and perform different types of audits depending on the target (penetration tests, code audit, configuration review, etc.). The auditor should also identify vulnerabilities and propose remediation actions.

Key Responsibilities

Managing Security alerts and threat intelligence monitoring

• Monitor critical vulnerability alerts from various sources, including Orange CERT, and promptly communicate them to all relevant security stakeholders within Orange Business. Coordinate with the relevant entities to assess the impact and consolidate assessment reports, which are then shared with Orange CERT.
• Manage security alerts received from Orange CERT and Orange Group (DSEC). Conduct initial investigations and ensure proper follow-up to confirm that the security vulnerabilities are addressed by the responsible security teams.
• Collect threat intelligence from a variety of sources, such as open-source intelligence (OSINT), dark web monitoring, threat feeds, social media, and private intelligence-sharing groups, using Orange's tools.
• Analyze gathered threat data to identify potential risks, vulnerabilities, and attack vectors.
• Stay informed about the latest cyber threats, vulnerabilities, and attack methods through ongoing research, training, and participation in industry events.
• Collaborate with all security stakeholders within Orange Business to address threats identified by threat intelligence tools.
• Generate a monthly dashboard to report on threat intelligence activities and findings.

Vulnerability management

• Assess new vulnerabilities and work with security actors to determine impact within Orange Business.
• Produce vulnerability status dashboard for Orange Business and the associated compliance levels with security policies. Generate clear, detailed, and actionable reports that can be easily understood by technical and non-technical stakeholders.
• Maintain inventory of assets exposed over the internet and server bearing orange business and partner domains. The role of the senior security technical auditor is to ensure that the inventory integrity and degree of high degree of accuracy.
• Manage sub-domain requests for orange business.
• Perform regular vulnerability scans using automated tools to identify security weaknesses in networks, systems, applications, and devices.
• Analyze the results of vulnerability scans and prioritize vulnerability remediation based on severity, potential impact, and exploitability. Develop and integrate remediation plans directly into the vulnerability management process, ensuring quick and effective resolution of identified vulnerabilities.
• Conduct manual testing and verification of vulnerabilities to ensure accuracy and relevance. Work with relevant business owners to develop and implement remediation plans to address identified vulnerabilities.
• Maintain the documentation for the process for scanning Orange Business asset exposed over the internet and ensure that the company adheres with the vulnerability management SLAs in terms of remediation.

Cybersecurity rating

• Maintain a consistent inventory of Public IP addresses and assets across Orange Business, in collaboration with security stakeholders within the organization.
• Collaborate with cybersecurity rating companies, such as Bitsight, and DSEC to enhance the security score of Orange Business.
• Document procedures for using tools like Orange Cyber Rating and external vulnerability assessors, including Bitsight.
• Coordinate with all impacted entities to ensure that identified vulnerabilities are remediated promptly.
• Create dashboards to track vulnerability remediation progress, address false positives, and assist in process improvement.
• Ensure the proper use of internal cybersecurity rating tools, such as the DSEC tool, to scan all Orange-managed assets.

Incident Management

• Coordinate the response to security incidents, including data breaches, malware infections, and other cyber threats within CTIO and other Orange Business perimeters.
• Oversee containment, eradication, and recovery efforts to minimize damage and restore normal operations.
• Pilot incidents across Orange Business and take lead of a centralized managed.
• Assist and coordinate with incident managers across different Orange Business entities to conduct thorough investigations to determine the root cause of security incidents.
• Document Incident management process and training new joiners to handle incidents.
• Consolidate learn learnt during each incident and propose action plans.

Your Profile / Votre Profil

Core Competencies

• Intrusion tests:
• mastered skills on security audit techniques
• Scripting
• Configuration of security-related tools

• Software development skills related security-related tools
• Cyber defense: knowledge of attack and intrusion techniques and environmental vulnerabilities
• Knowledge of Operating System Security, Network security and protocols
• Knowledge of application layers
• Knowledge of the information system and architecture principles
• Knowledge of governance, norms and standards: mastery of audit methodologies
• Legal knowledge of ITN law relating to IS security and data protection
• Cybersecurity technology watch and study of trends

Abilities

• Fluent in both French and English
• Synthesis capacity
• Ability to popularize technical findings
• Writing of reports adapted to different levels of interlocutors
• Ethical sense
• Ability to manage and work in a team

Education, qualifications, and certifications

• Bachelor (or equivalent) including specialization in Cybersecurity or some years of professional experience on Cybersecurity.
• ISO27001, CEH (Master), CompTIA Security+ GIAC Security Essentials Certification (GSEC) or equivalent

Additional Information

Orange Business manages and integrates the complexity of international communications, freeing our customers to focus on the strategic initiatives that drive their business.  Our extensive experience and knowledge in global communication solutions, together with our understanding of multinational business and local support in 166 countries and territories, ensure that our customers receive a consistent, global solution wherever they do business.