World leader in gases, technologies and services for Industry and Health, Air Liquide is present in 80 countries with approximately 66,000 employees and serves more than 3,6 million customers and patients. Oxygen, nitrogen and hydrogen have been at the core of the company’s activities since its creation in 1902. Air Liquide’s ambition is to be the leader in its industry, delivering long-term performance and acting responsibly.
Candidate must have valid employment authorization in the U.S. and must not require visa sponsorship now or in the future. This position is not open for non-immigrant visa sponsorship.
Entity and activity description
Air Liquide Global Infrastructure and Operations (GIO) provides IT infrastructure services to the various BIS (Business Information Systems). The Americas Hub team within GIO is responsible for ensuring the delivery of all GIO services to its customers across the 3 Clusters (North America, Latin America, Airgas) and their respective Entities, encompassing 26,500 employees.
Within the GIO entity, Security in the Americas Hub covers 4 activities : Perimeter Security, Identity and Access Management, Active Directory and Authentication Services,, and Incident Response.
The Security Services team, in a global context and in a multi-client environment, are critical both in terms of protection of the group and in terms of operational impact, which pose a real challenge in terms of their development and industrialization considered a IT Security Expert for the Air Liquide IT/GIO
Our team is looking for an IT Security Engineer with a specialization in WAF technologies
Air Liquide has set up an IT infrastructure organization (Global Infrastructures Services) with the objective of piloting and delivering all infrastructure services to Air Liquide entities around the world in order to bring agility , efficiency and security to business.
This translates into an evolution of IT organizations with:
IT infrastructure and production services, which are managed globally, by a central department, called GIO (Global Infrastructure Operations),
Application services supported by dedicated departments, called BIS (Business Information Systems), for each business line and relevant geographies.
Global Infrastructure and Operations (GIO) at Air Liquide provides IT infrastructure services to the various BIS customers of the Air Liquide Group (BIS: "Business Information Systems").
Member of the Level 3 Security Solutions Operations team .
The Security Services team, in a global context and in a multi-client environment, are critical both in terms of protection of the group and in terms of operational impact, which pose a real challenge in terms of their development and industrialization.
Manage Incidents: Deal with L2 escalated incidents, manage critical incidents
Ensure root causes are identified and corrective actions are applied
Manage complex changes: create and track change from end to end and coordinate teams involved
Make sure all requested modifications (requests, changes, demands, ...) comply with security policies
Process requests assigned to the L3 group with respect for SLAs
Project and Service Management
Manage requests: management of security aspects (related to our services) of business projects
Manage the security aspects (related to our services) of infrastructure projects
Manage the evolution of our security infrastructure (architecture, new features, ...)
Identify opportunities to improve our services (both from an operational and security point of view)
Ensure that the service documentation is always up-to-date
Be an expert on one or more technologies within the service
Scope and environment
Matrixed environment; multiple stakeholders (GIO teams, BIS teams, application teams), multiple providers (consultants, datacenter teams, carriers, etc.)
5+ years experience in security (preferably in an operational security role)
3+ years experience managing Web Application Firewalls
Firewall (At least one of the following technologies: Checkpoint, Cisco, Fortinet, Palo Alto)
Knowledge of the principles of security architecture (DMZ, reverse proxy, segregation)
Knowledge of good security practices
Knowledge of standard attacks at the network, system and application level (principles, detection methods, countermeasures, etc.)
Ability to analyze the level of risk and make informed decisions
Experience managing small to medium sized projects
Operational experience managing security equipment
Experience working in an international context
Be willing to support the North or South America or work in those time zones
Working Hours: Monday-Friday 8:00 am - 5:00 pm
Weekend & Nights as needed / Project and/or Maintenance
AWS knowledge - Network and Security services
Reverse proxy (F5 ASM or AWAF)
SSL VPN (Pulse Secure)
Antimalware (Symantec Endpoint Protection)