• Design, configure, and deploy routed and switched network infrastructures across enterprise and OT environments. • Architect and implement secure network segmentation, firewall policies, VPN configurations, and access control strategies. • Configure network devices from baseline builds, including VLANs, QoS, STP, routing protocols, and high-availability configurations. • Support sales engineering efforts by developing technical solutions and participating in client presentations. • Conduct network and security assessments, identify vulnerabilities, and provide documented remediation recommendations. • Install and commission physical network infrastructure, including rack-mounted equipment and fiber/copper connectivity. • Support implementation of wireless solutions, including enterprise-grade WiFi systems. • Develop and maintain detailed network diagrams, configuration documentation, and test plans. • Provide in-person and remote troubleshooting and operational support. • Travel to client sites within the United States as required (typically 1–2 trips per month).

• Develop and formulate solutions to client problems on assigned projects. • Under general direction, responsible for the creation of work plans and task definitions. • Has broad technical knowledge but possesses an area of specialization or focus. • Gather and correlate engineering data using established and well-defined procedures. • Work on detailed and/or routine design and/or consulting assignments. • Propose solutions to solve new and/or complex problems encountered. • Provide guidance and direction to internal mid-level consultants and production staff. • Perform work in accordance with the agreed-upon budget and schedule with minimal supervision. • Perform cybersecurity assessments of OT/ICS environments, including SCADA systems, PLCs, RTUs, HMIs, field devices, and supporting network infrastructure. • Identify vulnerabilities, analyze risk posture, and develop actionable remediation plans aligned with industry standards and federal requirements. • Support implementation and documentation of controls in accordance with the Risk Management Framework (RMF) and applicable cybersecurity frameworks (e.g., NIST-based standards). • Develop and maintain required cybersecurity documentation, including System Security Plans (SSPs), security assessment reports, Plans of Action & Milestones (POA&Ms), and related compliance artifacts. • Collaborate with engineering, network, and project management teams to ensure cybersecurity requirements are integrated into system design and deployment. • Support Authority to Operate (ATO) efforts and ongoing compliance monitoring activities. • Conduct technical reviews, analyze system configurations, and recommend improvements to enhance system resilience and regulatory compliance. • Provide clear, concise, and technically sound written deliverables for Federal clients. • Support project planning, scheduling, and execution activities as needed.

• Lead the Application Security team, including hiring, mentoring, and performance management. • Define and execute the Application Security roadmap aligned with business priorities and regulatory obligations (e.g., PCI, SOC 2). • Partner closely with Engineering, Product, QA, Infrastructure, and DevOps leadership to embed security early in the SDLC. • Oversee security design reviews and code security reviews across: Go-based microservices Ruby-based monolith applications. • Provide technical guidance on secure architecture decisions in a cloud-first (AWS) environment. • Own and continuously improve the organization’s threat modeling framework and ensure it’s embedded in new feature development and architectural changes. • Ensure SAST and SCA tooling is integrated into CI/CD and appropriately tuned to reduce false positives. • Drive meaningful reporting dashboards for Development and Engineering leadership. • Establish and operationalize a risk-based vulnerability prioritization framework and scoring rubric aligned with OWASP guidance and applicable industry standards. • Act as a trusted advisor to Engineering leadership and influence architectural decisions that reduce systemic risk.

• Agir comme point de contact principal pour toutes les thématiques sécurité. • Superviser les activités RUN et projets liées à la cybersécurité. • Coordonner les équipes techniques, projets et métiers impliquées. • Organiser et animer les comités de suivi, comités de pilotage et réunions clients. • Assurer un reporting régulier et structuré : KPI, risques, incidents, plans d’actions. • Suivre et améliorer en continu les indicateurs de performance (SLA, KPI).