Confidential

CYBERSECURITY CARREERS
ENVIRONMENT

Bureau Veritas LCIE Cybersecurity lab is growing steadily and looking for new colleagues
to expand and strengthen our team of passionate cybersecurity specialists. Bureau Veritas
LCIE delivers consultancies, studies, conformity assessments and certification
cybersecurity missions as an independent third party organisation. This work can be
carried out on a process, an organisation or a product.

The missions imply multiple interfaces in an international environment, so a fluent level of

English is required.

Place of Work: LCIE Moirans (38) or LCIE Fontenay aux Roses (92). Partial/Full home
working possible.

We offer you an environment where you can develop yourself embedded within the
cybersecurity Bureau Veritas expert’s team, working and a wide diversity of cybersecurity
projects & customers.

Services provided by our Cybersecurity Lab:

- Security evaluation, via audit &/or testing according to cybersecurity standards &
regulations IEC 62443, ISO 21434, ETSI EN 303 645, ANSI/UL 2900 etc., OWASP top 10,
UNECE R155 & R156 …
- Risk Analysis and Threat Modelling according to various methodologies, EBIOS, STRIDE,
ISO 27005, IEC 62443-3-2 …
- Product vulnerability scanning and pen testing
- Source Code Review & Scanning

CARREERS

Bureau Veritas LCIE Cybersecurity lab is growing steadily and looking for new colleagues
to expand and strengthen our team of passionate cybersecurity specialists.

We are looking for variety of profiles from starter who want to learn and expand their
cybersecurity experience to confirmed professional & expert who are looking for new
challenges their career.

We offer you an environment where you can develop yourself embedded within the
cybersecurity Bureau Veritas expert’s team, working and a wide diversity of cybersecurity
projects & customers.

For more junior people we also have a program to quickly get you up to speed with the
different cybersecurity tests & evaluation methodology as well as the key standards used
for our evaluations.
 Confidential

SENIOR SECURITY EXPERT

Responsibilities:

• Perform evaluations of processes, systems and components according to IEC 62443.

• Provide Consultancy and evaluation services according to ISO 21434, ETSI EN 303
645, ANSI/UL 2900, UNECE R155 & R156 …
• Perform Risk Analysis and Threat Modelling according to various methodologies,
EBIOS, STRIDE, ISO 27005, IEC 62443-3-2
• Product vulnerability scanning and pen testing
• Source Code Review & Scanning
• Lead Projects with customers.

➢ Education:

• Graduated Engineer (Master or Bachelor of Sciences),

• 15 years’ experience in the R&D (Industrial Computing / Embedded Software / Cloud …)
including at least 5 years’ experience in cybersecurity
• Fluent in English.
• Conversant with key regulations and standards related to Cybersecurity (IEC 62443,
ISO2700x, ISO21434, NIST & ANSSI guidelines).
o Note: deep knowledge of each standard/regulations is not mandatory as long as
the candidate can justify enough experience/skills in cybersecurity aspects.
• Personal qualification(s) welcome: CEH, CompTIA Security +, CISSP ….

➢ Skills/Qualifications:

• A holistic view of the theme of cybersecurity,

• Team spirit,
• Capability of synthesis,
• Willingness to find innovative solutions,
• Excellent interpersonal skills,
• Writing skills.

JUNIOR SECURITY EXPERT

Responsibilities:
• Get involved in lab projects together with senior Security Experts for the following
activities:
o Perform Product vulnerability scanning and pen testing
o Source Code Review & Scanning
o Audit Evaluations of processes, systems and components according to IEC
62443, ISO 21434, ETSI EN 303 645, ANSI/UL 2900

➢ Education:

• Graduated Engineer (Master or Bachelor of Sciences),

• 3 years’ experience in the R&D (Industrial Computing / Embedded Software / Cloud …)
including at least 1 year experience in cybersecurity
• Fluent in English.
 Confidential

• Conversant with key regulations and standards related to Cybersecurity (IEC 62443,
ISO2700x, ISO21434, NIST & ANSSI guidelines).
o Note: deep knowledge of each standard/regulations is not mandatory as long as
the candidate can justify enough experience/skills in cybersecurity aspects.
• Personal qualification(s) welcome: CEH, CompTIA Security +, CISSP ….

➢ Skills/Qualifications:

• A holistic view of the theme of cybersecurity,

• Team spirit,
• Capability of synthesis,
• Willingness to find innovative solutions,
• Excellent interpersonal skills,
• Writing skills.

STARTER

Finished your Bachelor or Engineering study in cybersecurity?

When you have finished your education and start working for a company, you will be fully
qualified but still a beginner when it comes to work experience. Due to the nature of the work,
colleges and universities fully prepare you for the rapidly evolving and developing technologies
that we use on a daily base. But once at work, knowledge of today is outdated tomorrow. We
therefore not only want to offer you a job, but a career with sufficient opportunities for
knowledge development by offering a wide variety of training opportunities.

We offer you a multicultural work environment that encourages entrepreneurship, teamwork,

and a personal development.

Are you ambitious, inquisitive and communicative? Do you want to expand your security
knowledge and share it with colleagues and customers? Do you like customer contact and
traveling? Then we are a perfect match!