Cargando...
 

Purple team lead

Fecha: 13-nov-2021

Ubicación: Madrid, Madrid, ES

Empresa: Bureau Veritas

An award-winning employer, our people are trusted and responsible, believing in what they do with a clear commitment to contribute to transforming the world we live in and shaping a world of trust. Bureau Veritas operates in a wide range of sectors, delivering Testing, Inspection and Certification services to some of the world’s biggest household names. With more than 400,000 global clients and a reputation for quality, we are at the forefront of service and innovation.

Our people are at the heart of everything we do, which is why we have worked hard to create a supportive and engaging working environment, which is open and inclusive and individuals are given the opportunity to fulfil their potential and really leave their mark

 

The Company

Created in 1828, Bureau Veritas is a global leader in Testing, Inspection and Certification (TIC), delivering high quality services to help clients meet the growing challenges of quality, safety, environmental protection, and social responsibility.

As a trusted partner, Bureau Veritas offers innovative solutions that go beyond simple compliance with regulations and standards, reducing risk, improving performance, and promoting sustainable development.

Bureau Veritas core values include integrity and ethics, impartial counsel and validation, customer focus and safety at work.

Bureau Veritas is recognized and accredited by major national and international organizations.

 

Key Facts and figures

  • 2020 revenue: €4.6billion
  • + 70,000employees
  • Over 1,400 offices and laboratories in 140countries
  • + 400,000 clients
  • 6 global businesses with leadership positions
  • Bureau Veritas is listed on the Euronext Paris stock exchange (Stock symbol: BVI)

 

Role and Mission

You are leading the Purple Team. The goal is to pilot a mission of an (outsourced) team that will help Bureau Veritas find vulnerabilities and security issues within our IT ecosystem. The covered topics are very different and complementary (development, architecture, network, system, etc.), so we can improve our overall security posture.

2022 is the first year for the Purple Team within Bureau Veritas. The goal is to continue over a multi-year period, in order to consistently work on improving both the detection and the remediation of security issues in the long term.

 

The missions of the Purple Team audit are:

  • SOC/SIEM Use case review and testing
  • Crystal Box Testing of critical applications
  • Continuous testing of development code
  • Digital Forensics and Incident Response
  • HoneyPot deployment and survey
  • Awareness and Behavior, in order to measure knowledge level, motivation and enablement

Your missions:

  • Be the main point of contact of the Purple Team
  • Manage the technical access for the Purple Team to resources required for their mission
  • Make sure the Purple Team has answers to questions from internal teams on issues that are found, and make sure the recommendations are applied by internal teams
  • Organize the review of development code of specific applications (following the OWASP recommendations), and make sure the recommendations are applied by internal teams
  • Organize communication of the actions, the findings and the remediations with internal teams and the (outsourced) SOC
  • Write communications of the findings to end users, to improve their Security awareness

 

 

 

                Education, experience and skills

 

 

 

EDUCATION

  • Degree in the field of Cybersecurity, computer science, IT engineering or related fields

EXPERIENCE

  • Strong experience in IT
  • Strong experience in Security (technical domains)
  • Experience in an international work environment

 

REQUIRED KILLS

  • Very fluent English (written and spoken)
  • Out of the box thinking
  • Network, systems and security skills
  • Experience as a Red Team and / or as a security auditor
  • Ability and experience to formalize and drive both recommendations and action plans

 

OTHER BONUS SKILLS

  • Autonomy and hands-on experience on preparing technical platforms (PoC)
  • Development/scripting
  • Systems
  • Experience on Firewall / Log processing & parsing / SIEM / SOC

Please be aware that all roles within Bureau Veritas UK&I may require a DBS, Credit or Security Clearance Check.

 

Bureau Veritas is an equal opportunity employer.  No job applicant or employee shall receive less favourable treatment because of their gender, marital or civil partnership status, sexual orientation, colour, race, ethnic origin, religion, disability or age.

 

Bureau Veritas operates a strict Code of Ethics that ensures the proper conduct of our day-to-day business.  

Apply now