Cyber Security Specialist

As a Cybersecurity referent in the SLS Artificial Intelligence, you are tasked with protecting the

information systems and data specific to the company's artificial intelligence projects. This role

involves implementing and ensuring compliance with security policies, managing risks, and

adhering to regulatory requirements. In close connection with the SLS (Shared Line of Services)

and our IT outsourcing partner, your mission will be to maintain and enhance our security

posture by monitoring security KPIs, driving cyber risk assessments and technical audits, and

tracking remediation plans.

Main Responsibilities:

AI Security Framework Development:

• Design and implement a comprehensive security framework specifically tailored for AI

systems and applications.

• Ensure that the framework addresses the unique challenges and threats associated

with AI technologies.

Data Protection and Privacy:

• Develop and enforce policies for the secure handling, storage, and processing of data

used in AI projects.

• Implement measures to ensure compliance with data protection regulations such as

GDPR, particularly concerning AI data sets.

AI Model Security:

• Establish protocols to secure AI models against adversarial attacks, model inversion,

and other threats.

• Regularly audit and test AI models to identify and mitigate vulnerabilities.

Ethical AI Practices:

• Promote and enforce ethical AI practices within the organization.

• Ensure that AI systems are designed and deployed in a manner that respects user

privacy and avoids biases.

Incident Response for AI Systems:

• Develop and implement incident response plans specifically for AI-related security

incidents.

• Coordinate with AI teams to quickly address and resolve security breaches involving AI

systems.

AI Risk Assessment:

• Conduct regular risk assessments focused on AI projects to identify potential security

threats.

• Develop mitigation strategies to address identified risks.

Collaboration with AI Teams:

• Work closely with AI researchers, data scientists, and developers to integrate security

measures throughout the AI development lifecycle.

• Provide guidance on secure coding practices and the use of secure AI development

tools.

Continuous Monitoring and Improvement:

• Implement continuous monitoring systems to detect and respond to security threats

in real-time.

• Stay updated on the latest advancements in AI security and incorporate new

techniques and tools to enhance the security posture.

Training and Awareness:

• Conduct training sessionsfor AI teams on the latestsecurity threats and best practices.

• Raise awareness about the importance of security in AI projects and the potential

consequences of security breaches.

Regulatory Compliance for AI:

• Ensure that all AI projects comply with relevant security regulations and standards.

• Keep abreast of emerging regulations related to AI and adjust security policies

accordingly.

Your main activities will be to:

• For any cybersecurity topics, you are the main point of contact for our IT outsourcing

partners and solutions partners. Represent EQUANS during security committees with SLS

suppliers.

• You define main controls, track the KPIs and drive remediation plan within EQUANS'steam

(SLS or local).

• You contribute to major cyber incidents with the CSIRT-Equans.

• You contribute to the creation of security standard and guidelines related to his scope – in

liaise with group Cybersecurity Expertise - and in charge of its communication and

promotion to the IT operational teams (SLS or local).

• You contribute within the Architecture Design Authority.

• You follow-up the transversal projects of the Group for the information security and

cybersecurity aspects.

• You organize, with the EQUANS CERT, penetration testing and technical audits before

these projects go to production.

• You maintain a strong relationship and good collaboration with the different M-CISOs and

cloud teams of various entities within the Group.

Your profile:

• You are based in the Netherlands ( Your location is not a determining factor )

• You have a higher education degree (an Engineering degree in cybersecurity or a

Master’s degree in Computer Science and networks) or a proven experience as a

Security professionnal (more than 5 years) ;

• You are recognized for your expertise in securing systems, with ideally some related

certifications (CISSP, CEH, CompTIA Security+ ou GSEC) or certifications from main

solutions dedicated to Modern Workplace (,…).

• Good knowledge of AI frameworks, regulations, risks and architectures ;

• Knowledge of security information frameworks and risk management is useful

(ISO/IEC 27001, 27002 et 27005…);

• You are comfortable working in a decentralized and multicultural organization, with

heterogenous maturity levels in terms of cybersecurity and architecture practices;

• You are autonomous, energetic and show initiative;

• You are a good communicator, develop and maintain good relationships;

• You have strong ethics, and can exercise discretion;

• Fluent in English