Associate

Company Description

Resources is the backbone of Publicis Groupe, the world’s third-largest communications group. Formed in 1998 as a small team to service a few Publicis Groupe firms, Re:Sources has grown to 5,000+ people servicing a global network of prestigious advertising, public relations, media, healthcare and digital marketing agencies. We provide technology solutions and business services including finance, accounting, legal, benefits, procurement, tax, real estate, treasury and risk management to help Publicis Groupe agencies do what they do best: create and innovate for their clients.

In addition to providing essential, everyday services to our agencies, Re:Sources develops and implements platforms, applications and tools to enhance productivity, encourage collaboration and enable professional and personal development. We continually transform to keep pace with our ever-changing communications industry and thrive on a spirit of innovation felt around the globe. With our support, Publicis Groupe agencies continue to create and deliver award-winning campaigns for their clients.

Job Description

JOB SUMMARY:

The Associate will help to generate the reports and integrate sources through automation for vulnerability assessment and penetration testing activities. Resource must have hands on experience with information security technologies and key concepts such as Vulnerability Management, CVE, Risk etc.

The Associate must have a good understanding of IT and IT Security related technologies including authentication, authorization, logging, event and incident management, and should also have good project management and time management skills.

The responsibilities associated with the position are as follows:

• Must be familiar with top industry vulnerability assessment Or penetration testing tools. (Nexpose, Nessus and Metasploit).
• Benfitial to have a strong command over HTTP request/response construction and the manipulation of these to achieve the desired results in exploiting various vulnerabilities
• Exposure and experience with Metasploit would be plus
• Ability to analyze false positives and Zero day vulnerabilities
• Conducting security assessments through vulnerability testing and risk analysis
•  Proactively learns about and evaluates emerging technologies
• Good knowledge of system-level attacks and mitigation methods with a core competency in Windows and Linux
• Should be familiar with Windows environments and management domains, Firewalls, VPNs, Intrusion Detection Systems, and enterprise level information technology
• Continuously perform security research, analyze new and existing security vulnerabilities
• Improve the internal processes by automating manual processes
• Coordinate with asset owners and other relevant stakeholders to action response plans, help educate team personnel and asset owners about the vulnerabilities and their ramifications
• Build a smooth relationship with IT stakeholders
• Support documentation newly identified vulnerabilities as accepted risks
• Strong oral communications and writing skills are a must
• Security rating and application security testing tools knowledge would be plus

OTHER JOB REQUIREMENTS:

• Good communication and presentation skills
• Ability to work effectively and collaboratively with stakeholders.
• Willingness to work with geographically dispersed teams; may involve working during non-business hours occasionally to accommodate time-zone differences.

PERFORMANCE STANDARDS & EXPECTATIONS

• Bachelor’s degree within a science or related discipline.
• Solid understanding of IT security technologies, and particularly security technologies.
• 2-3 years direct experience in vulnerability assessment and penetration testing.
• 1+ years working in an IT related field.
• 2+ years in an information security related field.
• Excellent oral and written communications skills and listening skills.
• A ‘can do’ attitude team player who works well under pressure and with dispersed groups, worldwide.
• CISSP, CISM, CEH and technical certifications are a plus. (Cisco, Juniper, Microsoft, etc) are a plus.

Qualifications

ESSENTIAL JOB REQUIREMENTS:

• Work with globally distributed shared services and delivery teams
• Mandatory language skills (oral, written and listening) : English

Tools Experience:

• Nexpose/Any VM tool
• Opsramp/GLPI/Infobox-Any asset management tool
• Any CNAP Tools

Additional Information

NA

Publicis Groupe Commitment to Diversity & Equity Policy:

Publicis Groupe is deeply committed to diversity and inclusion in spirit and in action at every level of the organization. It reflects our core values and embodies our purpose of building a great company enabling human potential. We have a deep-rooted appreciation for how diversity of thought drives innovation, and we ground that value in a culture of collaboration and connected thinking.

• Diversity & inclusion are business imperatives on which Publicis Groupe will not negotiate. While fostering a work environment that is inclusive of all talent is a collective responsibility, it is leadership’s job to nurture the career aspirations and goals of all our talent. Promoting gender equality starts at the top and the Groupe will not tolerate anyone speaking for our organization who does not value the importance of inclusion. Publicis Groupe works very hard to champion diversity and will continue to insist that each agency’s leadership be champions of both diversity and inclusion.
• Our Core values “ VIVA LA DIFFERENC’E is based on the very aspect of celebrating differences 
• Our strategy focuses on bringing together teams with diverse perspectives, disciplines, and experiences, because diversity of thought best serves our clients and their customers who they aspire to impact

Equal Employment Commitment:

1. We provide equal opportunities to all our employees and to all eligible applicants for employment in our company. We do not unfairly discriminate on any ground, including race, caste, religion, color, ancestry, marital status, gender, sexual orientation, age, nationality, ethnic origin, disability or any other category protected by applicable law.
2. When recruiting, developing and promoting our employees, our decisions will be based solely on performance, merit, competence and potential.
3. We shall have fair, transparent and clear employee policies which promote diversity and equality, in accordance with applicable law and other provisions of this Code. These policies shall provide for clear terms of employment, training, development and performance management.