Join the EcoAct’s Climate Data Analytics team and help us scaling our impact on climate

change by developing digital products and data analytics that support our clients in

defining low-carbon and transformation strategies.

EcoAct’s vision: a Net Zero & Sustainable World

• Our mission: to globally contribute to the net zero transformation by delivering

impactful and innovative solutions

• Our scope of activity: all climate-related services that companies and territories

need to successfully change (climate risk assessment, carbon footprint, reduction

strategy, biodiversity, etc.)

• CDA’s role: design innovative methods and solutions to answer to clients’ needs

related to climate change.

• Your challenge: translate EcoAct’s expertise into secured digital products

Your mission :

Involved in all phases of the software development lifecycle, you will be in charge of

assisting products developments to ensure compliance with Secured Development

Lifecycle process.

• Synchronize our process to the IEC 62443-4-1 and ISASecure SDLA standards for

SDL. These standards are internationally certified. Our competitors are also

certifying to these standards.

• Increase rigor and consistency. We need a common approach to building security

into our products for all of Schneider Electric.

Your role will be to support the End-to-End (E2E) initiative across all software and system development lifecycles:

• Contribute to the specifications of EcoAct’s bespoke digital products with the

cyber and data security prism

• Promote and ensure best code practices

• Process QA Reports

• Threat Model and Architecture/Design Documentation

• Ensure Code Reviews

• Produce Static Code Analysis coding standards and report

• Realize Unit Tests to check secure implementation (input validation, error

handling…)

• Ensure Traceability between Security Requirements and Test Report

• Provide Defect dashboard

• Review Test Reports for Vulnerability testing, Ensure Non-Regression

Must have

• Master in Cybersecurity

• DevOps culture, experience working in CI/CD (Git CI, etc.)

• Experience in cloud infra (Microsoft Azure) and databases (SQL, NoSQL)

• Fluent in French and English

Nice to have

• Knowledge about IEC 62443-4-1 and ISASecure SDLA standards

• Experience with at least one Python framework (Typer, NumPy, pandas, Flask,

FastAPI, Click)

• Interest in environmental issues (energy, climate, biodiversity)

• Certified Information Systems Security Professional (CISSP)

• Certified Information Security Manager (CISM)

• Certified Ethical Hacker (CEH)

• CompTIA Security+

• Fluent in any language (Spanish, German, Italian, etc.)

FURTHER INFORMATION :

Position to be filled as soon as possible

Location: Paris, Grenoble, Bordeaux or Lyon

Remuneration: according to profile and experience

Occasional remote