Information Security Analyst implementing risk management in a global enterprise. Collaborating across teams to enhance security and compliance operations in a fast - paced environment.
About the role
- CyberSecurity Team Lead overseeing vulnerability management and security integration for Mistral's AI solutions. Collaborating with teams to enhance security posture and protect infrastructure.
Responsibilities
- Oversee the identification, prioritization, and remediation of vulnerabilities across both On-Prem and Cloud infrastructures as well as internal applications.
- Select, deploy, and maintain the tools needed for visibility and protection, including CNAPP, CSPM, SAST/DAST, secret scanning, and SBOM/CVE tracking.
- Integrate security controls and automated gates directly into CI/CD pipelines to catch vulnerabilities before deployment (Shift Left).
- Partner with engineering teams to interpret findings and "ease the fix," providing patches, code snippets, or architectural advice to resolve issues quickly.
- Define and maintain rigorous security guidelines and best practices for developers and system administrators.
- Design and lead security awareness programs and technical training tailored for developers and admins to reduce human risk.
- Track and define key security metrics (MTTR, coverage, vulnerability density) to visualize posture and progress to leadership.
Requirements
- 6+ years of experience in Information Security, with a specific focus on Application Security, Cloud Security, or DevSecOps.
- Strong scripting skills (Python, Go, or Bash) to automate security tasks and integrate tools.
- Deep understanding of CI/CD ecosystems and container orchestration (Kubernetes/Docker).
- Hands-on experience with modern security tooling (e.g., Wiz, Snyk, SonarQube, Prisma, or similar enterprise tools).
- Collaborative mindset: you view developers as partners, not adversaries, and focus on enabling them to code securely.
- Clear communication, autonomous, and capable of translating technical security risks into actionable engineering tasks.
- It would be ideal if you also have:
- Industry certifications such as CISSP, CCSP, OSCP, or cloud-specific security certifications.
- Strong Infrastructure as Code (IaC) experience with Terraform or Ansible.
- Experience in offensive security (Penetration Testing) to better understand attacker mindsets.
- Prior experience securing large-scale AI or Machine Learning infrastructure.
Benefits
- 💰 Competitive salary and equity package
- 🧑⚕️ Health insurance
- 🚴 Transportation allowance
- 🥎 Sport allowance
- 🥕 Meal vouchers
- 💰 Private pension plan
- 🍼 Generous parental leave policy
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Nuclear Security Consultant leading protective security projects at Frazer - Nash. Delivering security solutions against nuclear threats while collaborating with clients and internal teams.
Security Officer responsible for protecting, securing, and promoting safety at Memorial Hermann Hospital. Monitoring designated areas and responding to security emergencies, adhering to all policies and procedures.
Client Support Advisor delivering face - to - face service to clients in Scottish Borders. Helping them understand and access benefits with tailored one - to - one support.
Staff Security Architect defining and implementing secure architectures at Yum! Brands supporting global EMEA initiatives.
DevSecOps engineer ensuring security practices in software development lifecycle at Ford. Collaborating with teams and implementing secure coding practices.
Senior IT Security Engineer protecting IT Security platforms for one of the largest e - commerce sites in the U.S. Designing and managing security solutions to ensure network safety.
Cybersecurity Engineer supporting a critical U.S. Navy program enhancing national security and operational readiness. Designing and implementing secure system architectures for Navy combat systems and environments.
Information Security Awareness Associate developing engaging security awareness content for employees at RS Group. Supporting awareness campaigns and coordinating security communications.
Working student in crisis management at E.ON. Supports process development, tools administration, and internal communication.