How will you make an impact?HOW WILL YOU MAKE AN IMPACT?
Your key responsibilities will be the following:
1. Lead the cybersecurity architecture framework definition and implementation Develop and implement cybersecurity architecture strategy across the entire Group Establish effective governance practices to guide the architecture practice and ensure sustainable and scalable evolution of the service Enable control owners to fully comprehend their responsibilities and take ownership of control activities
2. Lead a multicultural and strong team with a clear vision and strategy Develop and communicate a compelling vision that resonates with team members and leadership expectations Foster an inclusive and collaborative team culture Provide mentorship and resources to support the professional development of every team member Establish team goals and ensure their successful attainment and future development
3. Engage with various Richemont entities’ executives and drive or participate in cyber assessments at strategical level
4. Oversee and support the scaling of the cybersecurity control framework toward the Group
5. Translate intricate security concepts into easily understandable language Advise business units, operational teams, and IT teams on cybersecurity architecture concepts, to ensure only acceptable risks are introduced to the Group, and to make sure Richemont keeps compliant with legislations and regulatory requirements
6. Track and monitor cyber risk remediation/mitigation measures
7. Serve as a senior cyber architect subject matter expert to business and technical functions in the Group
8. Collaborate with cyber risk managers and advisors to ensure that cyber security best practices are properly and systematically embedded within business and enterprise applications, services, platforms, and processes (enforce security by design)
9. Research emerging concept and solutions to secure complex business problems enhancing depth of knowledge and experience. Benchmarks cyber risk and security strategies in alignment with threat and risks landscapes
10. Assist in deployment of cybersecurity awareness program for the Group
11. Define and maintain KPIs to provide visibility to stakeholders and management
HOW WILL YOU EXPERIENCE SUCCESS WITH US?
For this role you will need to demonstrate of a certain maturity in the below skills:
12. Strong background in various cyber security roles with a focus on cyber architecture, infrastructure, technology
13. Proven experience in people management
14. Excellent communication skills including the ability to adapt and communicate toward several types of audiences, at various hierarchical levels (up to C-Level)
15. Proven knowledge and hands-on expertise on information security principles and practices
16. SME (Subject Matter Experts) in control management frameworks, such as NIST CSF, CIS top 20, ISO, NIST -53 etc.
17. Master one of the industries recognized common risk management frameworks (FAIR, NIST RMF, ISO, ISO, COSO, others) Strong advantage is also mastering any of the industry-recognized enterprise architecture frameworks (TOGAF, Zachman Framework, FEAF, GARTNER, or similar) Knowledge of the other frameworks is a plus
18. Industry recognised Security Certifications are a plus (, CISSP, CISM, CRISC, NIST CSF, etc.)
19. Industry recognised Cloud Security Certifications are a plus
20. Familiar with various international security and privacy regulations (GDPR, Chinese Cyber Security Law, South Korea PIPA, etc.)
21. Business acumen
22. Experience in project management
23. Very good analytical and problem-solving skills
24. Strong collaborative mindset
25. Experience working in large, multi-tiers and international environments
26. Fluent in English. Additional languages are a plus
WHAT MAKES OUR GROUP DIFFERENT?
Our true power does not lie in our similarities but in the rich diversity of our arts, cultures, and human skills, as well as our specific ability to foster untapped potential.
- We value freedom, collegiality, loyalty, and solidarity.
- We foster empathy, curiosity, courage, humility, and integrity.
- We care for the world we live in.
YOUR JOURNEY WITH US
1. If your application is selected, our Talent Acquisition Partner will reach out to you shortly for an introductory call.
2. As a next step, you will have interviews with the Head of Group Cyber Risk & Advisory, and any relevant internal stakeholder. Also, you will have a final interview with our HR Business Partner.