About the Role :

As a Cybersecurity Engineer at Capgemini you will architect, build, and maintain the core defenses that keep our clients’ digital assets secure. You’ll bridge the gap between design and implementation—partnering with architects, implementers, and incident responders—to deliver robust, automated security solutions across cloud and on‑premises environments.

Responsibilities :

• Design & Implementation
• Architect, integrate, configure, and maintain cybersecurity infrastructure (networks, endpoint solutions, security gateways, SIEM, etc.).
• Lead the development and maintenance of Infrastructure as Code (IaC) using tools such as Terraform, Ansible, or CloudFormation.

• Custom Development & Automation
• Build and extend security tooling—scripts, modules, and custom applications—to streamline detection, response, and hardening efforts.
• Embed security controls into CI/CD pipelines using GitOps and DevSecOps best practices.

• Collaboration & Lifecycle Support
• Partner with software development and operations teams to integrate security early in the SDLC and ensure continuous compliance.
• Work alongside Cybersecurity Implementers and Incident Responders to remediate vulnerabilities and refine defenses based on real‑world events.

• Innovation & Evaluation
• Evaluate emerging security technologies, frameworks, and practices; recommend enhancements to tooling, processes, or architecture.
• Conduct proof‑of‑concepts and pilot programs to validate new solutions.

• Governance & Documentation
• Author and maintain security policies, standards, and runbooks.
• Ensure all solutions meet performance, scalability, and conformance requirements.

Required Skills and Experience :

• Core Skills & Experience
• 3+ years in a cybersecurity engineering role, designing and operating security solutions.
• Strong programming/scripting abilities (Python, Go, PowerShell, Bash) for automation and tooling.
• Hands‑on experience with IaC and automation platforms (Terraform, Ansible, Puppet, Chef).
• Proficiency in DevSecOps: embedding static/dynamic analysis, secrets management, and compliance checks into CI/CD.
• Solid understanding of cloud security (AWS, Azure, GCP, or OVH)—networking, identity, encryption, and container security.
• Fluent in English

• Technical Expertise
• Familiarity with encryption standards (TLS, PKI), authentication protocols (OAuth, SAML), and secure communications.
• Experience with security monitoring and logging solutions (SIEM, EDR, NDR).
• Knowledge of container and Kubernetes security best practices.

• Additional
• Certifications such as CISSP, CCSP, GCP Professional Cloud Security Engineer, AWS Security Specialty, or equivalent.
• Prior experience in regulated sectors (finance, healthcare, government).
• Exposure to Zero Trust architectures and SASE frameworks.
• Background in threat modeling and adversary emulation.