Cloud Security Architect

About PwC

PwC, a multidisciplinary firm, brings together 7,000 employees in France and North Africa, within a global network of over 364,000 people in 136 countries. Every day, we practice excellence in our professions to achieve our ambition: to be useful to our clients and accelerators of change. In a constantly evolving world, we invest in the development of our teams with a strong value proposition: Grow here. Go further. A global commitment to support our talents in evolving their skills.

What are we looking for? Expertise, of course. But above all, curious, passionate personalities, ready to embody the behaviors of the PwC Professional, our common framework that guides how we work together. Recognized as a Top Employer for the 6th consecutive year, PwC is committed to offering an inclusive and disability-friendly work environment where everyone can collaborate fully and make an impact. If you need specific accommodations for the recruitment interview, please do not hesitate to let us know.

Your Team

Within the geographic scope of PwC France and North Africa, the Security, Safety, and Resilience Department is responsible for managing and coordinating the implementation and/or assistance of PwC network member firms in the following areas of expertise:

• Information Systems Security (ISS)
• Safety and Business Resilience (SBR)

As a Cloud Security Architect, you will be integrated into the Security, Safety, and Business Resilience Department within the Information Systems Security (ISS) unit. Under the direction of the CISO PwC France and North Africa, who leads this unit within our Neuilly-sur-Seine offices, the ISS unit staff contribute to cross-functional information systems security actions:

• They are an integral part of the incident management and crisis resolution structure set up under the direction of the Risk Management Leader in support of the Incident Controller (Incident Management Plan).
• They work closely with the Safety and Business Resilience unit on matters related to information protection: sensitive documents and lost or stolen IT equipment, internet scams, internal threats, and information theft.
• They help establish a secure IT work environment by identifying and monitoring internal and external threats, raising awareness or training PwC associates, employees, and service providers on good information systems security practices, and by developing risk mitigation strategies.
• They implement the security services of the PwC network and deliver some of them when the French language is required.
• They contribute to communicating a collective culture of security and cybersecurity to PwC employees.

More specifically, the Risk & Compliance team, in collaboration with the IT teams of the DSI France and North Africa and the corresponding teams of the PwC network, ensures the implementation of the security cycle for projects by following global policies and guidelines. To do this, they ensure that each project submitted to them follows all security steps. The team is responsible for submitting its conclusions regarding residual risks on the projects it monitors. The team members carry out, if necessary with the help of specialized services and PwC network tools, risk analyses, impact analyses, architecture reviews and definitions, security audits, and ensure system compliance with PwC's global policy. In conjunction with the Hygiene team, it creates and maintains a risk register throughout the system lifecycle. The team provides indicators to track project cycle steps, compliance, and risk levels. The Risk and Compliance team is responsible for delivering its service using network procedures and tools, and can deliver a similar service to other PwC network firms, particularly when the French language is required.

Your Missions

As a Cloud Security Architect:

• You are the security referent for project managers, accompanying them throughout the security process and participating in various project monitoring meetings and committees.
• You share your expertise and recommendations on technical architectures (Cloud, Kubernetes, Azure, AWS) and validate them.
• In liaison with PwC Global teams, you ensure compliance with security procedures and steps, analyze project documentation and associated risks and evidence, and draft the necessary documentation.

Your Profile

• You are a graduate of an engineering school or have a postgraduate degree in cybersecurity, risk management, and compliance.
• EBIOS or ISO27005 certification is desired.
• Holding one or more Microsoft Cloud certifications would be a plus.
• You have at least 5 years of experience in an equivalent role.
• You have a fluent level of English to communicate with Global and network entities internationally.

Your Benefits

• An innovative technological environment: access to cutting-edge tools such as the Tech Lab, Copilot M365, and the AI Factory to shape the world of tomorrow.
• Unprecedented learning and development opportunities, thanks to our intelligent training platform and our culture of continuous feedback.
• A stimulating performance cycle, aligned with the PwC Professional framework, to help you achieve your goals and strive for excellence day after day.
• A positive and inclusive work environment to allow you to be fully yourself and collaborate effectively in serving our clients (parental leave programs, gender equality, Be Well, Work Well health and well-being programs, LGBT inclusion, and disability employment support).

To learn more about our benefits, visit our dedicated page.

Our Recruitment Process

To allow you to experience a smooth and transparent process, our recruitment process takes place in several stages:

1. Online assessment with a skills test and/or an English test
2. HR interview
3. Meetings with operational teams (one or more in-person interviews)
4. Verification of information: before hiring, a specialized organization will verify the information on your CV