Expert(e) Sécurité du Cloud - Cybersécurité - Biot

Sopra Steria
Full_timeBiot, France

📍 Job Overview

  • Job Title: Expert(e) Sécurité du Cloud - Cybersécurité - Biot
  • Company: Sopra Steria
  • Location: Biot, Provence-Alpes-Côte d’Azur, France
  • Job Type: Temps complet (Hybrid)
  • Category: DevOps / Infrastructure / Security
  • Date Posted: 2025-07-03
  • Experience Level: 5-10 ans
  • Remote Status: Hybrid (2 days remote per week)

🚀 Role Summary

Sopra Steria is seeking a Cloud Security Expert to join their team in Biot, France. This role involves protecting hybrid or multi-cloud environments in critical contexts, ensuring compliance, resilience, and security of client information systems. The ideal candidate will have a strong background in cloud architecture, security, and relevant certifications.

💻 Primary Responsibilities

  • Risk Analysis & Compliance: Conduct risk analysis on cloud projects, identify non-compliances, and propose remediation plans using ISO 27001, NIST, CIS, RGPD, and SecNumCloud standards.
  • Security Strategy: Develop and maintain cloud security policies, including segmentation, encryption, IAM/PAM, and integrate security into DevSecOps and CI/CD cycles.
  • Architecture & Governance: Design and evaluate cloud architecture at multiple CSPs, implementing security standards such as CNAPP, CASB, CSPM, EDR, etc. Participate in security committees, audits, and governance activities.
  • Surveillance, Detection & Response: Implement detection tools (SOC, SIEM, EDR, XDR) and respond to security incidents.
  • Advisory & Training: Advise and train technical teams and clients on secure cloud adoption and best practices.
  • Synergy & Capitalization: Identify and ensure synergies and capitalization of technical solutions between the company's activities.

🎓 Skills & Qualifications

Education: Bachelor's degree in Computer Science, Engineering, or a related field.

Experience: At least 5 years of experience in cloud architecture and security, with a focus on hybrid and multi-cloud environments.

Required Skills:

  • Proficient in multiple cloud environments (Azure, AWS, GCP, etc.)
  • Strong knowledge of cloud security standards and best practices
  • Experience with risk analysis, compliance, and security audits
  • Familiarity with DevSecOps and CI/CD pipelines
  • Excellent communication and collaboration skills

Preferred Skills:

  • Certifications: Microsoft SCCM 2012, Microsoft MS-101, Microsoft AZ-102, Microsoft AZ-900, Microsoft Sentinel / Microsoft Defender, AWS Certified Security – Specialty, Microsoft SC Series (SC-100, SC-200, SC-300, SC-400, SC-900)
  • Familiarity with security tools and platforms (CNAPP, CASB, CSPM, EDR, etc.)
  • Experience with incident response and digital forensics
  • Knowledge of French data protection regulations (RGPD, SecNumCloud)

📊 Web Portfolio & Project Requirements

  • Portfolio Essentials: Showcase your cloud security expertise through case studies, architecture diagrams, and security assessments.
  • Technical Documentation: Demonstrate your understanding of cloud security best practices, risk management, and compliance processes through well-documented projects.
  • Certifications: Highlight your relevant certifications, such as Microsoft and AWS security certifications.

💵 Compensation & Benefits

Salary Range: €55,000 - €70,000 per year (based on experience and market research)

Benefits:

  • Health Insurance
  • Employee Savings Plan
  • Meal Vouchers
  • Profit Sharing
  • Vacation Bonuses
  • Referral Bonuses

Working Hours: 40 hours per week, with flexible deployment windows and maintenance schedules.

🎯 Team & Company Context

🏢 Company Culture

Industry: Sopra Steria is a global technology and consulting firm, specializing in digital transformation, consulting, and systems integration.

Company Size: Medium to large (51,000 employees worldwide)

Founded: 1968

Team Structure:

  • The Cloud Security Expert will join the Value Center Protect ByDesign within the Cyber Division.
  • The team works on strategic missions for large enterprise clients in an international environment.
  • The role involves collaboration with various technical teams and clients.

Development Methodology:

  • Agile/Scrum methodologies for project management and sprint planning.
  • Code reviews, testing, and quality assurance practices.
  • CI/CD pipelines and automated deployment strategies.

Company Website: https://www.soprasteria.com/

📝 Enhancement Note: Sopra Steria places a strong emphasis on innovation, collaboration, and client focus. The company encourages continuous learning and offers numerous training opportunities.

📈 Career & Growth Analysis

Web Technology Career Level: Senior/Staff Cloud Security Engineer

Reporting Structure: The Cloud Security Expert will report directly to the Value Center Protect ByDesign Manager.

Technical Impact: This role has a significant impact on the security and resilience of client information systems, ensuring compliance with relevant standards and regulations.

Growth Opportunities:

  • Technical leadership and architecture decision-making opportunities.
  • Specialization in emerging cloud security technologies and trends.
  • Mentoring and knowledge-sharing opportunities within the team and across the company.

📝 Enhancement Note: Sopra Steria offers numerous growth opportunities, both in terms of technical specialization and leadership roles. The company encourages employees to develop their skills and advance their careers through various training programs and internal mobility.

🌐 Work Environment

Office Type: Hybrid (2 days remote per week)

Office Location(s): Biot, France (with additional offices in France and worldwide)

Workspace Context:

  • Collaborative workspace with cross-functional team interaction.
  • Access to development tools, multiple monitors, and testing devices.
  • Flexible work arrangements and deployment windows.

Work Schedule: 40 hours per week, with flexible deployment windows and maintenance schedules.

📝 Enhancement Note: Sopra Steria's hybrid work environment encourages collaboration and flexibility, allowing employees to balance their work and personal lives effectively.

📄 Application & Technical Interview Process

Interview Process:

  1. Technical assessment of cloud security knowledge and experience.
  2. Architecture and design discussion, focusing on security best practices and standards.
  3. Client engagement and communication assessment.
  4. Final evaluation and technical impact discussion.

Portfolio Review Tips:

  1. Prepare case studies demonstrating your cloud security expertise and problem-solving skills.
  2. Highlight your understanding of cloud security best practices, risk management, and compliance processes.
  3. Showcase your ability to work collaboratively with technical teams and clients.

Technical Challenge Preparation:

  1. Brush up on your knowledge of cloud security standards, best practices, and relevant tools.
  2. Familiarize yourself with the latest cloud security trends and emerging technologies.
  3. Practice explaining complex security concepts clearly and concisely.

ATS Keywords: Cloud Security, Hybrid Cloud, Multi-Cloud, Risk Analysis, Compliance, Security Architecture, Governance, DevSecOps, CI/CD, Security Standards, Incident Detection, Training, Client Engagement, Technical Solutions, Multi-Cloud, Hybrid Cloud, Security Audits, Azure, AWS, GCP, OVHcloud, CNAPP, CASB, CSPM, EDR, Microsoft SCCM 2012, Microsoft MS-101, Microsoft AZ-102, Microsoft AZ-900, Microsoft Sentinel / Microsoft Defender, AWS Certified Security – Specialty, Microsoft SC Series

📝 Enhancement Note: The interview process at Sopra Steria focuses on assessing the candidate's technical expertise, communication skills, and cultural fit. The company values candidates who can demonstrate their ability to work collaboratively and effectively in a dynamic, international environment.

🛠 Technology Stack & Web Infrastructure

Cloud Platforms:

  • Azure
  • AWS
  • GCP
  • OVHcloud

Security Tools & Platforms:

  • CNAPP
  • CASB
  • CSPM
  • EDR
  • SOC
  • SIEM
  • Microsoft SCCM 2012
  • Microsoft MS-101
  • Microsoft AZ-102
  • Microsoft AZ-900
  • Microsoft Sentinel / Microsoft Defender
  • AWS Certified Security – Specialty
  • Microsoft SC Series (SC-100, SC-200, SC-300, SC-400, SC-900)

Development & DevOps Tools:

  • CI/CD pipelines
  • Automation and deployment tools
  • Infrastructure as Code (IaC) tools
  • Containerization and orchestration tools

📝 Enhancement Note: Sopra Steria's technology stack is diverse and includes various cloud platforms, security tools, and development/DevOps tools. The company encourages its employees to develop expertise in relevant technologies and tools to drive innovation and client success.

👥 Team Culture & Values

Web Development Values:

  • Innovation and continuous learning
  • Collaboration and client focus
  • Technical excellence and quality
  • Security and compliance
  • Diversity and inclusion

Collaboration Style:

  • Cross-functional teamwork between developers, designers, and stakeholders
  • Code reviews and pair programming practices
  • Knowledge sharing and mentoring opportunities

📝 Enhancement Note: Sopra Steria's team culture emphasizes collaboration, innovation, and continuous learning. The company values diversity and inclusion, encouraging all employees to contribute to its success.

⚡ Challenges & Growth Opportunities

Technical Challenges:

  • Staying up-to-date with emerging cloud security technologies and trends
  • Designing and implementing secure, scalable, and resilient cloud architectures
  • Ensuring compliance with relevant security standards and regulations (ISO 27001, NIST, CIS, RGPD, SecNumCloud)
  • Managing and mitigating security incidents and vulnerabilities
  • Collaborating effectively with cross-functional teams and clients in an international environment

Learning & Development Opportunities:

  • Technical training and certification programs
  • Participation in industry conferences, events, and communities
  • Mentoring and knowledge-sharing opportunities within the team and across the company
  • Internal mobility and career progression opportunities

📝 Enhancement Note: Sopra Steria offers numerous learning and development opportunities, allowing its employees to expand their skills and advance their careers in the dynamic field of cloud security.

💡 Interview Preparation

Technical Questions:

  1. Can you explain the key differences between Azure, AWS, and GCP security models and best practices?
  2. How do you approach risk analysis and compliance for cloud projects?
  3. Can you describe a complex cloud security challenge you've faced and how you addressed it?
  4. How do you ensure the security of CI/CD pipelines and DevSecOps processes?
  5. Can you explain the role of security in digital transformation and business continuity?

Company & Culture Questions:

  1. How do you balance the need for security with the agility required for cloud adoption and innovation?
  2. Can you describe a time when you had to adapt your security approach to meet changing business requirements?
  3. How do you foster a culture of security and compliance within a team or organization?
  4. Can you share an example of a successful collaboration with a client or stakeholder to achieve a security goal?
  5. How do you stay up-to-date with the latest cloud security trends and emerging technologies?

Portfolio Presentation Strategy:

  1. Highlight your cloud security expertise through case studies, architecture diagrams, and security assessments.
  2. Demonstrate your understanding of cloud security best practices, risk management, and compliance processes.
  3. Showcase your ability to work collaboratively with technical teams and clients.
  4. Tailor your portfolio to the specific requirements and context of the role at Sopra Steria.

📝 Enhancement Note: The interview process at Sopra Steria focuses on assessing the candidate's technical expertise, communication skills, and cultural fit. The company values candidates who can demonstrate their ability to work collaboratively and effectively in a dynamic, international environment.

📌 Application Steps

To apply for this Cloud Security Expert position at Sopra Steria:

  1. Submit your application through the provided link.
  2. Customize your resume and portfolio to highlight your cloud security expertise and relevant experience.
  3. Prepare for the technical interview by brushing up on your cloud security knowledge, practicing case studies, and familiarizing yourself with the company's technology stack and values.
  4. Research Sopra Steria's company culture, mission, and values to demonstrate your alignment with the organization's goals and objectives.

⚠️ Important Notice: This enhanced job description includes AI-generated insights and web technology industry-standard assumptions. All details should be verified directly with the hiring organization before making application decisions.

Application Requirements

Candidates should have a degree in computer engineering or equivalent and at least 5 years of experience in cloud architecture and security. Proficiency in various cloud environments and relevant security certifications are required.