Manager Regional Biso - Paris, France - Foundever

Foundever

Entreprise vérifiée

Paris, France

il y a 3 semaines

Posté par:

Sophie Dupont

beBee Recruiter

Description

A propos

The Manager, Regional Business Information Security reports to and provides support to the Director, Regional Business Information Security in conducting client interactions including the support of business development activities where security discussions are requested or required, client security risk assessments, client security audit activities including presenting evidence and follow-up audit risk mitigation discussions.

This role also works with Global Business Support to facilitate completion of RFP security questionnaires and reviews contract security language.

Résumé du poste

Additionally, the Manager, Regional BISO will:

Serve as a project implementation team member to conduct security due diligence on client project implementation teams and participates in Enterprise Change Management meetings to review and approve client impacting changes.
Advise and/or assist in conducting IT security risk assessments, reviews, investigations and risk management services throughout the company; provide security risk evaluation, audits, mitigation and solutions to projects and initiatives.
Develop and implement strategies to balance security recommendation with business needs
Guide and consult on security related questions from solutions providers, developers, engineers, and leadership team
Provide guidance and consultation on corporate security initiatives
Work with IT to ensure assets are adequately secured to clients' requirements
Conduct and support physical security planning, reviews, audits and operations
Support security, operations and other staff in the identification, investigation and mitigation of frauduelent and other prohibited activities
Provide oversight and management of Analysts, Regional Business Information Security Office
Other securityrelated support functions as needed or assigned to the BISO Team by the VP Business Information Security or the Chief Security Officer

Profil

Knowledge/Abilities

Expert knowledge and experience in Information Security best practices (technical knowledge and demonstrated technical expertise)
Ability to receive complex business and technical requirements, from multiple stakeholders, rapidly determine the appropriate security solution and guide the team to achieve the desired results
Experience in large global environments spanning multiple timezones
Common Security Frameworks (ISO 27000 series, NIST SP 800 series, etc)
Privacy Frameworks (GDPR, HIPAA, PIPEDA, etc)
Payment Card Industry (PCI)
Other industry and country security requirements as required to support clients in the region supported
Ability to appropriately handle critical information and sensitive information
Effectively use Microsoft Office products, including Visio, in communication delivery
Effective organization and communications skills
Ability to effectively plan, delegate and/or supervise the work of other team members
Ability to lead, motivate, develop and train other team members

Independent Decision Making Skills

Selfmotivated, directed and wellorganized capable of managing complex local and international security requirements
Security Input into the design of client IT solutions
Ability to review and recommend contractual security language
Security Reviewer and Approver of client requested changes in the Enterprise Change Management process
Ability to identify and implement areas of opportunity for process improvement of client security support
Input into enterprise security design based on client changes or requirements
Input into other areas of security as client requirements evolve

Experience, Qualifications, Education, Certifications & Travel

Years of Experience: At least 35 years in technology, cybersecurity or risk governance roles interfacing with global clients on complex technology solutions or security consulting. This could be in technical account management, sales engineering or IT project management.
Qualifications:
Education: Fouryear degree or equivalent combination of education and experience
Certifications: CISSP and/or CISM and/or CISA preferred
Travel: Up to 50% within region of responsibility could be required