Find your next tech and IT Job or contract role.

Trusted to think critically If you’re ahead of the game on cyber security, systems and operations risk, we can secure your career ambitions. Our Cyber Security Consultants are trusted to work closely on a wide range of exciting projects with real-world purpose, impacting clients from all sectors, as part of one of the largest cyber consultancies in the UK. Our roles are only available if you hold or fulfil the criteria to obtain a UK Security Clearance. This position requires you to work on client site in Basingstoke 5 days per week.

🏁CONTEXTE DE LA MISSION Je recherche pour l'un de nos clients basé à Issy-Les-Moulineaux (92), un(e) Consultant(e) Cybersécurité confirmé(e) (6-8 ans d'XP environ) disposant de connaissances polyvalentes (Vuln. Management, SIEM, analyse de logs, endpoint/XDR,...), ainsi qu’une bonne compréhension des flux de données et des environnements techniques complexes. 🧾 INFOS LOGISTIQUES 🚀 Démarrage : Janvier 2026 ; ⏳ Durée : 1 an renouvelable ; 📍 Lieu : Issy-les-Moulineaux ; 🏡 Télétravail : quasi-full remote (présence requise le jeudi)

Nous recherchons un Operations Analyst spécialisé dans les activités liées au post-market processing . 🎯 Missions Dans le cadre de cette mission, vous interviendrez notamment sur : Le monitoring du payment/delivery des transactions traitées par les différents desks internationaux. La résolution des désaccords avec les counterparties et la coordination avec les équipes internes ( trade support , front offices , reconciliations , etc.). La gestion et la résolution des cash breaks . La communication quotidienne avec les équipes en charge des securities et des cash accounts . Les reconciliations nécessaires au suivi de l’activité ( internal & external breaks monitoring ). La participation active aux business projects , aux évolutions de processus et aux initiatives organisationnelles. La contribution aux activity monitoring reports .

An SC cleared Operational Technology Security Specialist is required for an initial 6 month outside of ir35 contract. The clients site is Abingdon this is a hybrid role paying £450 per day outside ir35 for 4 days working remotely 1 day on site or £500oper day outside of ir35 for 4.5 days on site and .5 day remotely. The OT Security Specialist will lead the development and maturation of the Operational Technology (OT) security capability as part of a greenfield security programme. This includes defining and implementing an OT Security Strategy, developing policies and standards, and introducing appropriate security controls across OT environments. The OT Security Specialist will provide technical and governance oversight of OT security, ensuring alignment with industry frameworks (IEC 62443, NIST CSF, CAF, ISO 27001) and with enterprise cyber security objectives. The role will combine hands-on implementation, strategic oversight, and the creation of governance artefacts. You will also engage with engineering teams and managed service providers (MSPs) to ensure that OT security controls are effectively designed, implemented, and sustained. Experience with SIEM/SOC integration is valuable and considered desirable. Key Skills and experience: *Lead the design and delivery of the OT Security Strategy, policies, and standards. *Define governance processes for OT security, ensuring alignment with enterprise security frameworks. *Conduct OT risk assessments and gap analyses against recognised standards (IEC 62443, NIST CSF, CAF). *Identify, prioritise, and oversee the implementation of security controls across OT systems and networks. *Provide technical oversight and assurance when engaging with MSPs and third-party vendors. *Collaborate with enterprise security teams to align OT security with broader cyber programmes. *Support OT incident response activities, including escalation paths to SOC teams where relevant. *Mentor and support junior team members in OT security concepts and practices. *Track and report on OT security maturity progress against roadmap milestones. oDemonstrable experience in maturing OT security within ICS or critical infrastructure environments. oProven ability to create and implement OT security strategies, policies, and standards. oStrong knowledge of OT security frameworks and standards (IEC 62443, NIST CSF, CAF, ISO 27001). oExperience conducting OT security risk assessments, gap analysis, and remediation planning. oKnowledge of OT networks, segmentation, and common industrial protocols. oExperience working with operations and engineering teams in OT environments. oAbility to provide technical oversight for MSPs or third-party security service providers. oStrong communication and documentation skills, particularly in policy/standards creation. *Desirable Experience: oFamiliarity with SIEM/SOC integration for OT environments. oExperience with OT asset discovery, monitoring, and security tool deployment. o Exposure to regulatory compliance in critical infrastructure (e.g., NIS Directive, UK CAF). oMay be requested to represent the Group in OT security working groups, act as an SME in OT-related projects, and contribute to the development of internal security capability through training and mentoring Due to the nature and urgency of this post, candidates holding or who have held high level security clearance in the past are most welcome to apply. Please note successful applicants will be required to be security cleared prior to appointment which can take up to a minimum 10 weeks. LA International is a HMG approved ICT Recruitment and Project Solutions Consultancy, operating globally from the largest single site in the UK as an IT Consultancy or as an Employment Business & Agency depending upon the precise nature of the work, for security cleared jobs or non-clearance vacancies, LA International welcome applications from all sections of the community and from people with diverse experience and backgrounds. Award Winning LA International, winner of the Recruiter Awards for Excellence, Best IT Recruitment Company, Best Public Sector Recruitment Company and overall Gold Award winner, has now secured the most prestigious business award that any business can receive, The Queens Award for Enterprise: International Trade, for the second consecutive period.

IT Infrastructure Team Lead Our Client has a great opportunity to play a key role as an IT Infrastructure Team Leader. You will be leading a team of highly skilled infrastructure professionals, third party management and will have responsibility for all infrastructure services. This covers network, hosting, and server infrastructure (on-premises and cloud). As IT Infrastructure Team Leader, you will have highly developed leadership skills, strong technical IT infrastructure skills and have proven experience effectively delivering infrastructure projects. We are looking for an Infrastructure Team Leader with at least 5 to 7 years proven hands-on expertise who has knowledge managing & improving technologies, security, and compliance for internal led standards. Main Accountabilities Responsible for managing, mentoring, and developing a team of highly skilled 3rd line infrastructure engineers, ensuring a high performing team Work closely with the IT management team, 3rd parties, and business and product owners to deliver efficient infrastructure services, ensuring excellent working relationships exist and the department benefits from collaborative working and the sharing of knowledge Management, administration, and operational support of the infrastructure Contribute to the effective governance of project deliverables to ensure solutions are fit for purpose and adhere to the IT Infrastructure roadmaps and architectural strategy Managing Incidents and Requests in line with agreed SLA's/OLA's Providing a first point of escalation for the team in respect of service/delivery issues Proactive incident, problem, change and configuration management Management of resources ensuring adequate cover is maintained to deliver the existing support requirements Ensuring effective DR/BCP plans exist to deliver the required RPOs and RTOs for all infrastructure services, including regular testing Managing effective and value adding third party relationships. Key Requirements Proven experience of supporting a large 24x7 operations, and experience of leading a multi-skilled team through change and transition Technically delivered a Cloud migration project Exceptional people management skills to inspire and motivate a team of highly technical specialists Managing internal and third-party resources as required to plan, design, build and run the enterprise IT infrastructure Experience of delivering infrastructure changes within a fast paced, high frequency change environment An excellent understanding of enterprise best practice infrastructure management, including use of automation/orchestration, monitoring, and logging Previous experience working in mixed on-premises/cloud environments e.g., Azure/AWS Working knowledge of information security threats and the best way to prevent them Minimum ITIL V3 Foundation certified and significant experience in ITIL aligned environments Excellent stakeholder management experience Have a broad understanding of relevant technologies and the opportunities they provide to enhance our service offerings – examples are: Microsoft based server infrastructures and back-office technologies Linux/open-source technologies Experience of delivering solutions using a mix of on premise, hybrid and SaaS, PaaS and IaaS models Virtualisation technologies Data Centre and Edge Networking Infrastructure and Endpoint security technologies Office 365 and Microsoft Azure Scripting, PowerShell, Ansible The Client is based in Paddington London. The salary for this position is in the range £65K - £75K plus benefits. Please do send your CV to us in Word format along with your salary and availability.

Our Telecoms client is looking for an experienced Security Engineer. This role is mainly remote but there might be occasional travel to customer sites in Warwick, Southern and Western Datacenters. Please note that the rate is around £350 per day outside IR35. Our client is looking for a Security Engineer with active SC clearance but if someone matches all the required skills the client could consider candidates that are eligible for clearance but don't currently hold one. Essential experience: Strong experience in supporting Checkpoint, Juniper, Bluecoat, F5 and knowledge of Cisco networking solutions including all the major switching families and understanding of Wireless Technologies and Cisco IPT /QoS /802.1x/ Inflobox DNS, VPN Technologies (ipsec, SSL VPN, DMVPN and Wide Area network technologies including routing protocols. Day to days duties: - Technical Ownership of the Customers Security infrastructure estate, processes procedures, documentation and life cycle management. - Senior Technical point of reference for all Security related projects, Changes or modifications to firewall rule bases. - Senior technical point of reference/escalation and interface into vendor support for all Incidence related to the security infrastructure. - Design of customer networks including the support of High Level and Low Level designs. Providing technical support, , Change management, for hard (physical) and soft (remote) changes. Customer inventory management, Hardware software, EOL. Due to the nature and urgency of this post, candidates holding or who have held high level security clearance in the past are most welcome to apply. Please note successful applicants will be required to be security cleared prior to appointment which can take up to a minimum 10 weeks. LA International is a HMG approved ICT Recruitment and Project Solutions Consultancy, operating globally from the largest single site in the UK as an IT Consultancy or as an Employment Business & Agency depending upon the precise nature of the work, for security cleared jobs or non-clearance vacancies, LA International welcome applications from all sections of the community and from people with diverse experience and backgrounds. Award Winning LA International, winner of the Recruiter Awards for Excellence, Best IT Recruitment Company, Best Public Sector Recruitment Company and overall Gold Award winner, has now secured the most prestigious business award that any business can receive, The Queens Award for Enterprise: International Trade, for the second consecutive period.

Nous poursuivons notre développement et recherchons actuellement un.e Analyste Cyber Threat Intelligence (CTI) pour intervenir au sein d’un grand groupe du secteur industriel international. 🎯 Contexte de la mission Vous intégrerez les équipes Cybersécurité au sein du CyberSOC, dont les responsabilités sont : - Surveiller les nouvelles menaces et attaques - Délivrer des services de sécurité opérationnels (anti-malware, chiffrement, authentification renforcée, certificats, etc.) - Détecter et répondre aux incidents via la supervision continue (SIEM) - Fournir un support aux investigations en cas d’incidents majeurs - Piloter des projets visant à renforcer l’offre de services sécurité - Accompagner les équipes business dans l’intégration de la sécurité dans leurs projets - Coordonner un réseau cybersécurité mondial (IT / Apps / Industriel) Vous interviendrez au sein de la ligne de service Identify, en charge de : - Threat Surveillance - Malware Analysis - Cyber Threat Intelligence (CTI) 💻 Vos missions Au sein de l’équipe Identify, vous participerez notamment à : - L’automatisation de processus liés aux services CTI (interconnexion d’outils, orchestrations, workflows) - La création de nouveaux services CTI, dont la mise en place d’une plateforme MISP - L’amélioration continue et la documentation des processus existants - La contribution au renforcement du dispositif de renseignement sur les menaces cyber 📦 Livrables attendus - Automatisation des processus CTI & documentation associée - Amélioration / optimisation des workflows existants - Participation à la construction, à la configuration et au cadrage d’usage de MISP

At CGI, you’ll play a key role in advancing the secure, high-performance platforms that support mission-critical Space, Defence and Intelligence programmes. As a DevOps Engineer, you’ll enhance automation, modernise delivery workflows, and strengthen the reliability of complex on-premise systems that enable our clients to operate with confidence. Working closely with development and infrastructure teams, you’ll take ownership of innovative solutions that accelerate delivery, apply creative approaches to automation and tooling, and grow your expertise within a supportive community of engineers focused on making real, lasting impact. CGI was recognised in the Sunday Times Best Places to Work List 2025 and has been named a UK ‘Best Employer’ by the Financial Times. We offer a competitive salary, excellent pension, private healthcare, plus a share scheme (3.5% + 3.5% matching) which makes you a CGI Partner not just an employee. We are committed to inclusivity, building a genuinely diverse community of tech talent and inspiring everyone to pursue careers in our sector, including our Armed Forces, and are proud to hold a Gold Award in recognition of our support of the Armed Forces Corporate Covenant. Join us and you’ll be part of an open, friendly community of experts. We’ll train and support you in taking your career wherever you want it to go. Due to the secure nature of the programme, you will need to hold UK Security Clearance or be eligible to go through this clearance.

We are looking to recruit a Technical Operative 1 in the Configuration dept for our growing team that will provide effective and efficient support to our clients. They will be required to provide basic to intermediate level IT configuration services and will need to be competent at component level whilst being self-sufficient to manage their workload within timely parameters. Typically, a Technical Operative 1 will provide software installations and configuration in an existing IT infrastructure or pre-designed project and will be familiar with current Microsoft desktop Operating Systems. Bespoke System work. In house systems (Training Given) Building (Software) various systems using detailed scripts- training provided on Scripts and much be followed as a breach can result in escalation. Effective Up Line Reporting - This is where the candidate needs to have strong and effective communication skills, has the ability to communicate with varying levels of stakeholders Data input. - 25-50% of this role is data input, all on spreadsheets so input is manual, attention to detail is key here Consolidating consignments for distribution. Each workers has their own assignments but they need to be aware of how their assignment contributes to the entire order and work effectively, again communication is key here because if they are running either behind or ahead of schedule the worker need to communicate this with Supervisors/TLs to decide on appropriate actions Pallet Movement / Work Planning Ability to work to driven targets and SLA and time management skills. Boxing and Unboxing IT equipment * Good written and verbal communication skills. * IT background * Data input experience is essential * Flexibility to react to demand on short notice. * Proactive whilst being a team player * Ability to work to driven targets and SLA and time management skills. * Knowledge of I.T componentry. * Accuracy and attention to detail. Due to the nature and urgency of this post, candidates holding or who have held high level security clearance in the past are most welcome to apply. Please note successful applicants will be required to be security cleared prior to appointment which can take up to a minimum 10 weeks. LA International is a HMG approved ICT Recruitment and Project Solutions Consultancy, operating globally from the largest single site in the UK as an IT Consultancy or as an Employment Business & Agency depending upon the precise nature of the work, for security cleared jobs or non-clearance vacancies, LA International welcome applications from all sections of the community and from people with diverse experience and backgrounds. Award Winning LA International, winner of the Recruiter Awards for Excellence, Best IT Recruitment Company, Best Public Sector Recruitment Company and overall Gold Award winner, has now secured the most prestigious business award that any business can receive, The Queens Award for Enterprise: International Trade, for the second consecutive period.

At CGI, we’re shaping the future of secure digital transformation helping clients across industries protect their most valuable assets in the cloud. As a Cloud Security Consultant, you’ll play a key role in building trusted, resilient cloud environments that enable innovation and drive business success. You’ll work within one of the UK’s largest and most respected cyber consultancies, influencing major cloud programmes that safeguard national infrastructure, modernise operations, and empower clients to grow with confidence. Join us to make an impact where it truly matters combining your technical expertise with creativity and ownership to deliver lasting change. CGI was recognised in the Sunday Times Best Places to Work List 2025 and has been named a UK ‘Best Employer’ by the Financial Times. We offer a competitive salary, excellent pension, private healthcare, plus a share scheme (3.5% + 3.5% matching) which makes you a CGI Partner not just an employee. We are committed to inclusivity, building a genuinely diverse community of tech talent and inspiring everyone to pursue careers in our sector, including our Armed Forces, and are proud to hold a Gold Award in recognition of our support of the Armed Forces Corporate Covenant. Join us and you’ll be part of an open, friendly community of experts. We’ll train and support you in taking your career wherever you want it to go. Due to the secure nature of the programme, you will need to hold UK Security Clearance or be eligible to go through this clearance. This is a hybrid position.

Client & Projet Au sein de l’équipe Sécurité, vous interviendrez pour un acteur international de l’assurance et des services financiers, spécialisé dans la gestion des risques et la protection des clients. Missions principales Concevoir, configurer et opérer les solutions Ping Identity : PingFederate, PingAccess, PingID. Mettre en place et optimiser les flux d’authentification : SSO, fédération d’identités, MFA. Réaliser les intégrations applicatives (protocoles SAML, OAuth2, OIDC). Garantir la disponibilité, la performance et la sécurité des architectures IAM hybrides. Assurer le troubleshooting avancé et participer à la résolution des incidents complexes. Contribuer aux bonnes pratiques de sécurité, à la conformité et au suivi opérationnel. Compétences requises Ping Identity (PingFederate / PingAccess / PingID) – niveau expert (P5 – Master). Security Operations Management. Security Compliance & Client Data Protection (CDP). Security Monitoring & analyse de risques. Profil linguistique Français : requis. Anglais : requis. Conditions Télétravail : possible. Localisation : uniquement profils basés en France. Contacts

Description de la mission : Nous recherchons un Ingénieur SOC expérimenté pour l'un de nos clients basés à Abidjan, spécialisé en SIEM (expert L2 SIEM ou L3 BUILD SIEM), pour prendre en charge de nouveaux projets de détection, incluant la mise en place de 80 à 100 règles. La mission couvre l’ensemble du cycle, depuis l’examen de l’analyse des risques existante et la compréhension approfondie du contexte métier, notamment dans le secteur financier, jusqu’au déploiement et au tuning des règles SIEM ArcSight. Objectifs et livrables Tâches à réaliser : Préparer et mettre en œuvre les différents scénarios permettant de détecter de nouvelles menaces. Traduire en « use case » les retours d’expérience issus de crises Cyber ou de nouvelles menaces. Analyser des situations complexes en matière de cybersécurité (ex : analyse de logs de tout type). Faire évoluer les règles et les périmètres de surveillance du SOC, ainsi que les systèmes de corrélation, en fonction des retours d’expérience des alertes courantes. Organiser les sessions de « troubleshoot » de l’infrastructure SIEM si besoin (SD, connecteurs, devices). Préconiser des actions de mitigation et de remédiation. Animer et développer les compétences et expertises des acteurs pays et de l’équipe SOC MEA (rédaction de supports de communication sur la cybersécurité, actions de sensibilisation, etc.). Participer activement aux résolutions de crises de sécurité : conduite et analyse des alertes de sécurité et traitement d’incidents en collaboration avec les entités internes ou externes impliquées. Élaborer et conduire un processus d’évaluation des risques de sécurité pour MEA. Assurer une veille sur les nouvelles menaces et/ou risques.

Connaissances techniques : (formation, maitrise d’outils spécifiques et autres compétences précises) Connaissance d’un outil de SIEM (de préférence ELK) Maîtrise des outils de sécurité (IDP/IPS, NDR, EDR, etc.) Bonne connaissance des protocoles réseau et de systèmes d’exploitation Analyse Forensique et investigation numérique Une certification orientée réponse à incidents (équivalent GCIH du sans Institute) serait un plus. Vos missions principales seront les suivantes : Analyser les alertes de sécurité provenant du SOC N1/N2 Identifier et qualifier les incidents de sécurité en fonction de leu impact et de leur criticité Coordonner la réponse aux incidents avec les équipes internes et les clients Mettre en œuvre les mesures correctives pour limiter l’impact des incidents et éviter leur récurrence. Document les actions entreprises et rédiger des rapports détaillés pour chaque incident traité Contribuer à la mise à jour et à l’optimisation des procédures de réponse à incidents. Participer à des exercices de simulation et des tests réguliers pour améliorer notre posture de cyberdéfense. Assurer une veille sur les menaces émergentes et les nouvelles techniques d’attaque. Partager les connaissances acquises lors des incidents avec les autres membres de l’équipe et participer à des sessions de formation. Match : Vous êtes méthodique et possédez un fort esprit d'équipe tout en étant capable de travailler de manière autonome et organisée. Votre expérience ainsi que votre capacité analytique vous permettent de concevoir des stratégies efficaces de gestion des incidents et de contribuer à l'amélioration continue des procédures. Vos compétences en communication tant écrite qu'orale sont excellentes, et vous maîtrisez l'anglais technique. Vous détenez un diplôme supérieur en informatique, cybersécurité ou dans un domaine connexe (École d'ingénieur, Université ou équivalent). Vous avez au moins 4 à 5 ans d'expérience pertinente dans la gestion et réponse aux incidents de sécurité informatique. Vous êtes prêt à travailler sur site à Boulogne Billancourt, avec une flexibilité pour le télétravail 2 à 3 jours par semaine.

AWS Technical Lead 6 Month contract initially Based: Hybrid - Max 1 day p/w onsite in Windsor initially (Flexible) Rate: £450 - £500 p/d - (via Umbrella company) We have a great opportunity with a world leading organisation where you will be provided with all of the support and development to succeed. A progressive organisation where you can really make a difference. We have a great opportunity for an AWS Technical Lead to join the team. Key Responsibilities: * Participate in refining and scoping upcoming sprint work. * Assist solution architects with technical design and breaking down complex tasks. * Accountable for timely delivery of assigned tickets, meeting acceptance criteria. * Conduct spikes/investigations into innovative technologies for future project viability. * Ensure teammates' work meets code quality standards through reviews. * Coordinate with other teams for integrations, ensuring alignment of tasks and APIs. * Work with the QA team to investigate and resolve issues. * Mentor junior team members, providing assistance with tasks and problem-solving Key Skills & Experience: * Experience building Serverless and Event Driven architectures on AWS * Experience with TypeScript/Node.js * Experience with Git or similar version control system * Background in working within an agile/SCRUM environment * Experience delivering robust and scalable systems * Good verbal and written communication skills and a team player * Attention to detail and the ability to work unsupervised This is an excellent opportunity on a great project of work, If you are looking for your next exciting opportunity, apply now for your CV to reach me directly, we will respond as soon as possible. LA International is a HMG approved ICT Recruitment and Project Solutions Consultancy, operating globally from the largest single site in the UK as an IT Consultancy or as an Employment Business & Agency depending upon the precise nature of the work, for security cleared jobs or non-clearance vacancies, LA International welcome applications from all sections of the community and from people with diverse experience and backgrounds. Award Winning LA International, winner of the Recruiter Awards for Excellence, Best IT Recruitment Company, Best Public Sector Recruitment Company and overall Gold Award winner, has now secured the most prestigious business award that any business can receive, The Queens Award for Enterprise: International Trade, for the second consecutive period.

Role: Ai Tester Rate: Inside IR35 Location: Remote with occasional travel to Croydon Duration: 6 - months initially SC Clearance or Eligible Job Spec for AI Tester: -Strong understanding of machine learning concepts , algorithms and deep learning models to effectively test AI applications. -Strong understanding of use cases such as classification, text generation, text summarisation. -Good understanding of data quality and pipelines(Data and ML Pipelines) -Software testing experience with focus on AI testing , AI test planning including creation of AI test strategies and test plans. -Experience with testing Generative AI and Natural Language Processing(NLP) systems. -Experience in model evaluation and model testing. -Experience with model stacking and model integration testing of AI Machine Learning models for Quality, Robustness, and Performance. -Experience of Machine Learning testing for anomaly detection using Python libraries -Familiarity with AI frameworks and tools like TensorFlow, Pytorch, Keera or similar. -Proficiency in programming languages such as Python, Java or others used in AI. -Experience testing with models such as BERT, Meta LLAMA and XGBOOST. -Strong understanding of model evaluations including model overfitting and underfitting. -Experience with API testing on endpoints and data exchange formats -Experience with version control systems like GIT to manage and track changes to AI codebase. -Familiarity with metrics related to model classifications and an ability to analyse dashboard provided by cloud native services. -Understanding of cloud computing platforms like AWS and Azure. -Effective communication to work collaboratively with cross functional teams including developers and data scientists. Key AI areas & models used in Automation Centre: -Azure models specific to Classification : XGBOOST -AWS Sagemaker specific to Summarisation : Meta LLAMA 30B -Hugging face models on Azure -BERT for text generation or data creation LA International is a HMG approved ICT Recruitment and Project Solutions Consultancy, operating globally from the largest single site in the UK as an IT Consultancy or as an Employment Business & Agency depending upon the precise nature of the work, for security cleared jobs or non-clearance vacancies, LA International welcome applications from all sections of the community and from people with diverse experience and backgrounds. Award Winning LA International, winner of the Recruiter Awards for Excellence, Best IT Recruitment Company, Best Public Sector Recruitment Company and overall Gold Award winner, has now secured the most prestigious business award that any business can receive, The Queens Award for Enterprise: International Trade, for the second consecutive period.

Vous serez en charge de la collecte et de la gestion des logs sur l’ensemble des environnements cloud et on-premise ainsi que des outils de sécurité qui alimentent et soutiennent les opérations SOC. Votre rôle Conception & gestion des pipelines de logs Concevoir, mettre en œuvre et maintenir des pipelines complets de collecte et de parsing de logs Développer des parsers avancés pour normaliser et structurer les données selon des schémas spécifiques. Implémenter des parsers sous forme de code pour ingérer de grands volumes de données Garantir la qualité, la fiabilité et la standardisation des logs sur tous les systèmes intégrés Ingestion & Intégration de données Gérer et optimiser les systèmes d’ingestion et de transmission de logs à l’aide d’outils brokers tels que Fluentd et Kafka Collaborer avec les équipes réseau, les responsables des applications métiers et les analystes sécurité pour intégrer de nouvelles sources de logs Développer et maintenir les règles de parsing ainsi que les flux de normalisation et d’enrichissement des données pour l’ingestion dans le SIEM (par ex. Elastic SIEM ou équivalent) Identifier et résoudre les problèmes d’ingestion ou de parsing de logs en coordination avec les parties prenantes Automatisation & Sécurité Mettre en place des pipelines CI/CD pour le déploiement automatisé des configurations d’intégration de logs Appliquer les pratiques DevSecOps pour sécuriser et automatiser le processus d’ingestion des logs Créer une détection continue pour surveiller le pipeline d’ingestion Innovation & Documentation Collaborer avec Agentic AI pour créer des parsers Contribuer à l’amélioration continue de l’observabilité et des capacités de détection du SOC Maintenir la documentation et les schémas pour tous les flux et composants d’intégration de logs