IT Security Officer

About the job

Choosing Capgemini means choosing a company where you will be empowered to shape your career in the way you’d like, where you’ll be supported and inspired by a collaborative community of colleagues around the world, and where you’ll be able to reimagine what’s possible. Join us and help the world’s leading organizations unlock the value of technology and build a more sustainable, more inclusive world.

Your role:

• Act to enforce security and information protection policies, in accordance with the provisions of the Bank Articles of Incorporation and specific regulations;
• Identify, detect, analyse, and report information security threats and potential threats from various sources, using various correlation techniques to categorize them and propose measures to minimize the impact;
• Analyse and investigate security incidents assigned directly for resolution or posted in the Manage and resolve USD security tickets, ensuring timely approvals, validations, and follow‑up actions.
• Review and approve installation requests for new applications according to security policies and compliance standards.
• Evaluate, approve, and track new firewall rule requests, ensuring alignment with network security best practices.
• Understand the risks in AI/ML systems and ability to detect AI‑driven fraud, deepfakes, and automated phishing.
• Design, configure, and maintain Data Loss Prevention (DLP) rules to safeguard sensitive information and prevent data leakage.
• Continuously optimize DLP policies based on incident trends, business needs, and risk assessments.
• Monitor, evaluate, and report on the evolution of threats and vulnerabilities of IT systems;
• Administer and maintain bank’s platforms used for vulnerability scanning and risk assessment.
• Perform regular vulnerability scans, analyze findings, prioritize risks, and coordinate remediation with technical teams.
• Drive the end‑to‑end vulnerability management lifecycle—from discovery and reporting to follow‑up and closure with system owners.
• Detect sophisticated attacks (e.g., lateral movement, privilege escalation).
• Plan, submit for approval, and execute plans for periodic checks of vulnerability scanning systems and solutions according to the Bank's internal standards;
• Collaborate with Red Team and support adversarial simulations (ransomware readiness, etc.).
• Coordinate and execute periodic “Run the Bank” pentesting activities to identify security gaps across systems and applications and collaborate with internal teams and external partners to validate fixes, retest vulnerabilities, and support secure deployments.
• Use your ability to create automation scripts (Python, PowerShell) for: log enrichment, vulnerability scanning, phishing‑email triage workflows
• Ensure the provision of information and the introduction of the concept of security
• Analyse confidentiality agreements concluded with third parties and monitor compliance with internal regulations;
• Execute work related to responding to internal and external audit missions;
• Participate in ensuring the security and protection of classified information

Your profile:

• Bachelor's Degree or higher;
• Minimum 3 years’ experience in the field of Information Security;
• Hands-on expertise with vulnerability scanning tools, DLP solutions
• Solid understanding of: Network security concepts (firewalls, ports, protocols),Vulnerability scanning methodologies and Common vulnerabilities (CVEs, CVSS, OWASP Top 10)
• Experience reviewing and validating security-related change requests (e.g., firewall rules, installations).
• Familiarity with penetration testing workflows and remediation tracking.
• Preferred, but not mandatory, certifications: CEH, SCCP, other specific IT and IT security technology courses and certifications;
• Strong analytical skills and ability to interpret technical security reports.
• Excellent communication skills with the ability to interact with technical and non‑technical stakeholders.
• English language proficiency

Hybrid role : 3 days/week Bucharest client office

What you’ll love about working here:

• Flexible and dynamic work environment involving teams spread across different global locations.
• Communities with shared interests and identities, all working together to advance diversity, equity and inclusion within the workplace and society.
• Do you want to learn more? You will have access to various training programs and platforms (e.g.: content provided by Pluralsight, Harvard and Coursera);
• Attractive benefits package (meal tickets, medical services, Benefit online, Employee Share Option Plan).
• Capgemini Romania is an equal opportunity employer. We promote equality and dignity in all aspects of recruitment and employment, and all offers of employment and promotions are made based on performance, competence and ability.

About Us:

Capgemini is a global leader in partnering with companies to transform and manage their business by harnessing the power of technology. The Group is guided every day by its purpose of unleashing human energy through technology for an inclusive and sustainable future. It is a responsible and diverse organization of over 360,000 team members in more than 50 countries. With its strong 55-year heritage and deep industry expertise, Capgemini is trusted by its clients to address the entire breadth of their business needs, from strategy and design to operations, fuelled by the fast evolving and innovative world of cloud, data, Al, connectivity, software, digital engineering and platforms. The Group reported in 2022 global revenues of €22 billion. Apply now!

Visit https://www.capgemini.com/ for more information.