Présentation de l'entreprise

Le poste

VINCI Energies, accelerator of energy and digital transformation, generates 21,6 billion euros of turnover with 109000 employees in 61 countries.
VINCI Energies Systèmes d'Information (VESI) oversees all the IT, communication and management tools for the Group VINCI Energies.
Working for the Group businesses, VESI drives innovation in the transformation of our jobs and working methods.
We support the Group in adopting new creative, innovative and ambitious solutions to meet the strategic challenges of tomorrow: Applications (SAP S/4HANA), Business Intelligence, Digitalization, Mobility, Artificial Intelligence, Technological platforms, Change management, Sustainable IT…
We are seeking a SOC Manager to pilot the SOC at VINCI Energies. Under the responsibility of the Cyber Defense manager within the Cybersecurity Direction at VESI, your will play a key role in the adoption of a SIEM for VINCI Energies and the industrialization of our detection capabilities.
Your role is to:
Lead the SOC team and mentor junior team members
Own the SIEM as a security service, including service governance, roadmap definition, operational quality, and coordination with internal and external stakeholders.
Coordinate log collection and log fine-tuning activities to ensure high-quality detections
Define and implement the detection strategy.
Develop and implement the threat‑intelligence monitoring and analysis process using sources and information services adapted to the operational context.
Produce indicators and reports to monitor activity, assess the effectiveness of the existing setup, and propose areas for improvement.
Collaborate with the CSIRT to improve response capabilities
 
Skills required:
Leadership
Strong knowledge of TCP/IP, network protocols, and operating systems (Windows, Linux).
Deep understanding of web application security and common vulnerabilities (e.g., OWASP Top 10).
Log parsing, normalization and tuning
System (Windows, Linux, Cloud, Containers) & Network (SD-WAN, DNS, Routing, Firewall, VPN)
Project management skills (effort estimation, planning, reporting)
Strong written and verbal communication skills
Must have:
You are passionate about cybersecurity
You have at least 5 years of experience working in a SOC / CSIRT / CERT
You are autonomous, curious with an analytical mind that likes problem solving
You have strong written and oral communication skills
You are fluent in both French and English (B2)
You have an engineering degree in Information Security, Computer Science, or Infrastructure security (min BAC+5)
Nice-to-have:
You have previous experience in leading security teams
You are certified SANS GIAC (GCFE, GCFA, GCIH or GCIA), OCSP or CISSP

Mission :

VINCI Energies, accelerator of energy and digital transformation, generates 21,6 billion euros of turnover with 109000 employees in 61 countries.

VINCI Energies Systèmes d'Information (VESI) oversees all the IT, communication and management tools for the Group VINCI Energies.

Working for the Group businesses, VESI drives innovation in the transformation of our jobs and working methods.

We support the Group in adopting new creative, innovative and ambitious solutions to meet the strategic challenges of tomorrow: Applications (SAP S/4HANA), Business Intelligence, Digitalization, Mobility, Artificial Intelligence, Technological platforms, Change management, Sustainable IT…

We are seeking a SOC Manager to pilot the SOC at VINCI Energies. Under the responsibility of the Cyber Defense manager within the Cybersecurity Direction at VESI, your will play a key role in the adoption of a SIEM for VINCI Energies and the industrialization of our detection capabilities.

Your role is to:

• Lead the SOC team and mentor junior team members
• Own the SIEM as a security service, including service governance, roadmap definition, operational quality, and coordination with internal and external stakeholders.
• Coordinate log collection and log fine-tuning activities to ensure high-quality detections
• Define and implement the detection strategy.
• Develop and implement the threat‑intelligence monitoring and analysis process using sources and information services adapted to the operational context.
• Produce indicators and reports to monitor activity, assess the effectiveness of the existing setup, and propose areas for improvement.
• Collaborate with the CSIRT to improve response capabilities
   

Skills required:

• Leadership
• Strong knowledge of TCP/IP, network protocols, and operating systems (Windows, Linux).
• Deep understanding of web application security and common vulnerabilities (e.g., OWASP Top 10).
• Log parsing, normalization and tuning
• System (Windows, Linux, Cloud, Containers) & Network (SD-WAN, DNS, Routing, Firewall, VPN)
• Project management skills (effort estimation, planning, reporting)
• Strong written and verbal communication skills

Profil demandé :

Must have:

• You are passionate about cybersecurity
• You have at least 5 years of experience working in a SOC / CSIRT / CERT
• You are autonomous, curious with an analytical mind that likes problem solving
• You have strong written and oral communication skills
• You are fluent in both French and English (B2)
• You have an engineering degree in Information Security, Computer Science, or Infrastructure security (min BAC+5)

Nice-to-have:

• You have previous experience in leading security teams
• You are certified SANS GIAC (GCFE, GCFA, GCIH or GCIA), OCSP or CISSP

Catégorie professionnelle : Ingénieur & cadre

Type de contrat : Contrat à durée indéterminée