IT Administrator - Application & Security (M/F/X)

Here's the job offer description formatted in Markdown, following your specifications:

About Biggie 🚀

Biggie is a global marketing agency for strategy and activation, part of the Biggie group, an independent international group of integrated marketing solutions.

Biggie's motto is "Partners in growth," and its ambition is to be a partner in the growth of brands. We achieve this by putting strategic and operational excellence at the service of brand performance. We offer tailor-made support, including marketing strategy, strategic planning, data & analysis, media, digital performance, content creation and adaptation, and business consulting, to meet their business challenges.

The agency has 300 experts, including 150 in France, and is present in 7 countries through 9 international offices (Paris, Marseille, Brussels, Milan, Geneva, Zurich, Prague, Dubai, and Sao Paulo).

For further information: www.biggie.co

The Role: IT Administrator – Application & Security 🛡️

The IT Administrator – Application & Security is responsible for the proper functioning, security, and availability of all business applications and digital tools within the organization. Beyond application lifecycle management, this role includes active cybersecurity operations: monitoring security logs across Microsoft 365 and Google environments, managing endpoint security tools (WithSecure, HarfangLab, Ninja One), conducting periodic account reviews, and processing application access requests.

🗒️ Missions

Access & Rights Management

• Create, modify, and revoke user accounts across all business applications (ERP, CRM, collaboration tools, SaaS platforms, etc.)
• Apply the principle of least privilege and manage role-based access control (RBAC) profiles
• Process access requests in coordination with HR (onboarding, offboarding, role changes)
• Manage privileged accounts and administrator credentials securely
• Maintain an up-to-date user rights registry and document all changes
• Participate in periodic access audits and user rights reviews

Access Revocation & Deletion

• Disable or delete accounts upon employee departure or role changes (offboarding)
• Implement automated deactivation workflows in coordination with the HR system and IT Team
• Ensure full traceability of deletions for audit and compliance purposes
• Archive user data in accordance with data retention policies and GDPR requirements

Application Maintenance & Administration

• Monitor operational status of production applications (availability, performance, incidents)
• Plan and deploy updates, patches, and new releases in coordination with software vendors
• Manage environments (production, staging, development) and deployment procedures
• Maintain technical and functional documentation for all managed applications
• Oversee application backups and test restoration procedures regularly
• Manage software licenses and ensure ongoing compliance (license audits)

Helpdesk & Level 1 Support

• Manage user account setup and password resets across Active Directory, Microsoft 365, and Google Workspace
• Maintain and update the internal knowledge base with known issues, workarounds, and resolution procedures

User Support & Stakeholder Relations

• Handle Level 2 support tickets related to applications
• Train users on new features and write user guides and documentation
• Act as the primary point of contact for business units regarding application needs
• Collect and prioritize enhancement requests in collaboration with business teams

Security & Compliance

• Ensure compliance with IT security policies (InfoSec) for all managed applications
• Contribute to the implementation of security audit recommendations
• Ensure GDPR compliance for data processing carried out through managed applications
• Manage entitlements in accordance with the company’s IT usage policy

Cybersecurity Operations & Log Management

• Validate the cybersecurity posture of all new applications during onboarding and ensure secure decommissioning during offboarding (data wiping, credential revocation, audit trail)
• Conduct periodic user account reviews and access recertification campaigns across all applications (quarterly or as required by policy); document and remediate anomalies
• Serve as first-line support for all application access requests via the helpdesk: assess legitimacy, validate with line managers, provision or deny access in accordance with security policies, and log every decision
• Monitor and analyze Microsoft 365 security logs on a daily basis: Entra ID (sign-in risk, conditional access failures, MFA anomalies), Microsoft Defender for Endpoint/Identity, and Microsoft Purview audit logs
• Monitor Google Workspace & Cloud security logs: Admin Console audit trail, Alert Center events, login anomalies, Drive sharing violations, and token/OAuth activity
• Administer and monitor the WithSecure endpoint protection platform: review alerts, manage policy profiles, investigate detections, and ensure endpoint compliance across the device fleet
• Analyze and triage HarfangLab EDR logs and alerts: investigate suspicious processes, lateral movement indicators, and endpoint telemetry; escalate confirmed threats to the IT Manager with full incident documentation
• Produce monthly or on-demand security reports summarizing log review findings, open alerts, access anomalies, and remediation actions taken; maintain a security event register

AI Workflow Architect & Automation

• Build AI-powered workflows and agents
• Connect LLMs (OpenAI, Claude, etc.) with APIs and internal tools
• Design automation pipelines across marketing, ops, and data

👉 Your Profile

• Experienced in end-to-end Access & Identity Management, including provisioning/deprovisioning across ERP, CRM, SaaS, and collaboration platforms while enforcing least privilege and RBAC models
• Strong knowledge of security and compliance frameworks (GDPR, InfoSec), with hands-on experience in access audits, entitlement reviews, and maintaining audit-ready documentation
• Proven ability to manage application lifecycle administration (monitoring, patching, environments, backups, and license compliance) in complex IT ecosystems
• Skilled in user support and stakeholder engagement, providing L1/L2 support, training users, and acting as a bridge between IT and business teams
• Solid expertise in cybersecurity operations, including log monitoring (Microsoft 365, Google Workspace), EDR tools, anomaly detection, and incident triage/escalation
• Detail-oriented in access revocation and data governance, ensuring secure offboarding, traceability, and compliance with data retention policies
• Capable of designing AI-driven automation workflows, integrating LLMs and APIs to streamline business processes and improve operational efficiency

🎁 Our Benefits

• An international group present throughout the world
• Multidisciplinary entities that are experts in their field: programmatic, influence, 360°, content creation, etc.
• Different career paths adapted to your professional aspirations
• On-going training sessions with a Digital AcademyAccess
• Employee meal allowance

Biggie Group offers employment opportunities without distinction of origin, sex, morals, sexual orientation, gender identity, age, marital status, physical appearance, disability, religion, or political opinion. Biggie Group complies with regulations combating discrimination in business. This policy applies throughout the employer process: recruitment, hiring, internal promotion, leave, remuneration, and training.