Languages: French and English are mandatory
Security Strategy & Executive Advisory
* Establish and drive the organization’s information security vision, strategy, and multi-year roadmap, aligned with business priorities, regulatory constraints, and evolving cyber threats.
* Act as a key advisor to executive leadership and governance bodies on cyber risk exposure, threat trends, and security investment decisions.
* Define and maintain a comprehensive security framework aligned with recognized standards and regulations (ISO 27001, NIST, GDPR, DORA, NIS2, etc.).
* Embed security-by-design and privacy-by-design principles across all platforms, products, and transformation initiatives.
* Own and manage the Information Security Management System (ISMS), ensuring ongoing certification and regulatory compliance across multiple geographies.
* Lead enterprise-wide risk assessments, threat analyses, and risk treatment plans, with clear tracking and accountability.
* Define, maintain, and enforce security policies, standards, and procedures to ensure consistency and maturity across the organization.
* Work closely with Risk, Compliance, Legal, and Data Protection functions to align security controls with regulatory and corporate governance requirements.
* Oversee third-party, supplier, and cloud security assessments, ensuring resilience and compliance throughout the value chain.
Security Operations & Operational Resilience
* Oversee security monitoring and response capabilities, including SOC activities (internal and/or outsourced), vulnerability management, and incident handling.
* Act as the executive escalation point during major cyber incidents, ensuring coordinated crisis management and clear communication.
* Ensure the design, maintenance, and regular testing of business continuity, disaster recovery, and crisis management frameworks.
* Drive continuous improvement in threat intelligence, offensive security (red teaming), and forensic investigation capabilities.
Leadership & Talent Development
* Lead and develop multidisciplinary cybersecurity teams, fostering a culture of ownership, collaboration, and continuous improvement.
* Recruit, mentor, and retain high-performing security professionals, with clear objectives, performance management, and career development paths.
* Promote security awareness and training programs to strengthen security culture across all levels of the organization.
Stakeholder & External Relations
* Serve as the primary cybersecurity representative towards regulators, auditors, and supervisory bodies.
* Collaborate closely with IT, Engineering, Risk, Fraud, Compliance, and Legal teams to integrate security into core business initiatives.
* Maintain strong relationships with external partners, industry groups, and intelligence communities to anticipate emerging risks and best practices.
Profile
* Degree in Computer Science, Cybersecurity, or a related discipline.
* At least 8 years of experience in information security, including leadership roles within regulated or complex environments.
* Strong expertise in cybersecurity governance, risk management, and compliance frameworks (ISO 27001, NIST, CIS, PCI-DSS).
* Demonstrated ability to design and operate large-scale, multi-entity security programs.
* Solid technical understanding of cloud security, IAM, SIEM/EDR, and secure infrastructure architectures.
* Excellent communication and influencing skills, with proven exposure to executive and board-level stakeholders.
* Strong people leadership skills, including coaching, team development, and conflict management.
* Very good understanding of regulatory environments and enterprise governance models.
* Fluency in English, written and spoken.
* Professional certifications such as CISSP, CISM, CISA, GIAC, or ISO 27001 Lead Auditor.
Interested in this opportunity? Feel free to apply or send us your updated CV at anne-catherine.son@cyberr.ai and morgane.zimmer@cyberr.ai
#J-18808-Ljbffr