Security Integration Engineer for Projects

To support its expansion, Phishia is looking for a dynamic and committed Security Integration Engineer for Projects, ready to accelerate the growth of our sustainability activities while building on our historical expertise in cybersecurity and artificial intelligence.

About Phishia

Phishia is a consulting firm founded by two engineers, specializing in major technological and strategic challenges: cybersecurity, artificial intelligence, and sustainability. We support leading companies such as major CAC 40 players (Airbus, Bouygues, SNCF …), with recognized expertise in cybersecurity, the core of our business.
Our cybersecurity and environmental assessment divisions are experiencing rapid growth, driven by strong demand and our pragmatic approach.
Joining Phishia means becoming part of a human-sized, ambitious, and fast-growing organization, at the heart of digital and sustainable transformations.

Your responsibilities

• Lead the integration of security into client projects from the design phase (Secure by Design).
• Conduct and formalize risk analyses (EBIOS RM), security files, hardening policies, and vulnerability management plans.
• Define technical security measures (network segmentation, OS hardening, monitoring, access management, logging).
• Ensure traceability of security requirements throughout the project lifecycle (deliverable reviews, action plan follow-up, integration testing).
• Work closely with system, development, network, CISO, and IT management teams.
• Prepare and support compliance audits (ISO 27001, NIS 2, LPM, SecNumCloud, etc.).
• Contribute to structuring internal methodologies (frameworks, templates, guides).
• Carry out active monitoring of technological, standards-related, and regulatory developments related to integrated cybersecurity.

Desired profile

Graduate of an engineering school or a Master’s degree (Bac+5), with a specialization in cybersecurity, systems, networks, or IT architecture
2 to 5 years of experience in integration, project security, technical audit, or information security governance
Good knowledge of security frameworks: EBIOS RM, ISO 27001, NIST, ANSSI, LPM
Strong command of Linux/Windows environments, hardening principles, and network architectures
Comfortable working in multi-stakeholder environments and able to translate technical challenges into operational recommendations
Strong writing skills, autonomy, and rigor

What we offer

Immersion in an agile and multidisciplinary ecosystem
Concrete, high-impact missions with a high level of autonomy
Accelerated skills development on key technical and regulatory topics
A flexible, stimulating, and supportive working environment

Location

Remote work, with regular check-ins with the team
Possibility of occasional on-site assignments with clients (Paris, Nantes)

Compensation

Based on profile, additional benefits, and career development opportunities