A large public sector organisation is running a NIS2 compliance programme inside its IT department to bring technical controls and procedures in line with the new directive. The role sits on that transformation, working closely with the security architect and infrastructure teams to translate security requirements into operational configurations, with hands-on work on the CMDB and firewall configuration.
The mission
The programme covers asset inventory, system hardening and operational security controls across systems, networks, identities, endpoints and cloud platforms. This work matters because the organisation must produce technical evidence for NIS2 and maintain measurable controls; your contributions feed the compliance evidence pack and the ongoing risk management cycle.
You will work day to day with the security architect, project teams and infrastructure operators to deliver technical implementations from the security roadmap. Typical activities include populating and reconciling the CMDB, applying hardening baselines to Linux and Windows Server hosts, configuring firewalls and IDS/IPS where required, and operating vulnerability and patch management processes. This is a junior role with scope to own concrete workstreams within the NIS2 programme and become the security reference for operational teams.
Your responsibilities
- Translate security requirements into enforceable configurations and controls, delivering measurable outcomes such as patched systems, hardened images and documented configuration baselines
- Lead and maintain the CMDB asset inventory so that project teams and auditors can trace systems, services and owners for NIS2 evidence
- Implement and operate technical controls: firewall rulesets, endpoint hardening on Linux and Windows Server, patch management and logging to support incident detection and audits
- Drive remediation of technical gaps identified by audits, vulnerability scans and security reviews, working with infrastructure and project teams to close findings
- Produce and maintain technical evidence and procedures required for NIS2 compliance, including configuration snapshots, logs and implementation reports
- Support security-by-design reviews in projects, advising on secure configurations and integration of IAM and monitoring controls
Your profile
Essential skills
- 1-3 years of hands-on experience in systems, networks or security operations, able to deliver practical hardening and configuration work
- Proficient with CMDB population and reconciliation, understanding asset ownership and lifecycle
- Practical experience with firewall configuration and rule management
- Operational skills on Linux and Windows Server administration and hardening
- Familiarity with patch management, vulnerability scanning and log collection for security monitoring
- Able to work in cross-functional project teams and explain technical controls to non-technical stakeholders
Languages
- French, C2 (fluent spoken and written)
Education
- Bachelor or Master in Computer Science, Cybersecurity or equivalent professional experience
This is a junior cybersecurity engineer focusing on NIS2 compliance, expected to deliver cmdb asset inventory and system hardening, and to perform firewall configuration linux and windows server hardening as part of the programme.