Cybersecurity Head of Governance & Performance

Led by Rodolphe Saadé, the CMA CGM Group, a global leader in shipping and logistics, serves more than 420 ports around the world on five continents. With its subsidiary CEVA Logistics, a world leader in logistics, and its air freight division CMA CGM AIR CARGO, the CMA CGM Group is continually innovating to offer its customers a complete and increasingly efficient range of new shipping, land, air and logistics solutions.

Committed to the energy transition in shipping, and a pioneer in the use of alternative fuels, the CMA CGM Group has set a target to become Net Zero Carbon by 2050.
Through the CMA CGM Foundation, the Group acts in humanitarian crises that require an emergency response by mobilizing the Group’s shipping and logistics expertise to bring humanitarian supplies around the world.

Present in 160 countries through its network of more than 400 offices and 750 warehouses, the Group employs more than 155,000 people worldwide, including 4,000 in Marseilles where its head office is located.

1. Mission :

Within the CMA CGM Cybersecurity Group Department, the new Cybersecurity Governance and Performance Department ensures CMA CGM digital resilience by defining security maturity objectives, establishing robust cybersecurity frameworks and check the appropriate implementation of the security objectives. Its mission is to implement :

• Define security maturity objectives for the Group based on CISO vision and risks
• Translate objectives in actionable & practical documentation corpus
• Ensure Governance policies are applicable and applied (via feedback loop)
• Ensure Critical oversight, guidance & challenge to the cybersecurity team & run activities
• Report to CISO

By fostering collaboration and accountability, it drives continuous improvement and adapts to emerging threats. This department empowers the CMA CGM Cybersecurity department to achieve its strategic objectives while maintaining a strong, secure, and compliant operational environment.

1. What will you do ?

Step into a pivotal leadership role where you will shape the future of the organization’s cybersecurity strategy and governance. As Head of Governance & Performance, you will lead a dynamic team to:

• Define and deliver the cybersecurity governance for the CMA -CGM group
• Define and develop the cybersecurity governance framework, tools, process
• Collaborate with others department to ensure proper alignment of security objectives with constraints from the field.
• Define the methodology, identify and maintain the ‘crown jewels’ list of assets to secure in priority
• Develop and implement innovative ad hoc controls to guarantee program efficiency and resilience.
• Establish trustworthy and impactful KPIs in partnership with service lines, ensuring transparency and measurable success.
• Create strategic and tactical dashboards that empower leadership to make data-driven decisions and steer cybersecurity initiatives.
• Oversee the delivery of Cybersecurity Service Lines, ensuring excellence and alignment with organizational priorities.
• Monitor and drive remediation plans for findings, including audit-identified gaps, ensuring a proactive and secure posture.
• Lead the team

This role offers the unique opportunity to drive innovation, accountability, and excellence of Cybersecurity department. If you’re ready to tackle complex challenges, inspire a high-performing team, and shape the future of cybersecurity, this is your moment to lead.

1. Who are we looking for ?

• Leadership & department management (budget, Human ressources…)
• Proven Experience in governance and Cyber security operation
• High capacity to analyze qualitative and quantitative data on various topics
• Good expertise with norms and international frameworks
• Strong capacity for listening and communication skills with all types of interlocutors
• Expertise in IT, AI & OT
• Strong management skills and transformation ability
• Knowledge of security/authorization model
• Auditors, regulators & business stakeholders
• Ability to collaborate and build relationships with Cybersecurity team member but also with relevant CMA CGM stakeholders
• Good communication skills, both written and oral
• Well organized, with good attention to detail
• Fluent in English
• Fluent in French
• Ability to work in a multicultural and cross-regional team (Europe/Canada/Asia/India)

1. Technology environment

• Knowledge of Cybersecurity & IAM concepts & tools
• Basic concepts on Cybersecurity solutions
• Proficient skills in PowerPoint, Word, Excel, AI, data management
• Experience in dashboarding & observability tool

1. Expected deliverables

• Full governance process, methods
• High level dashboards for management and tactical dashboards for service line directors
• Audit findings and remediation plan follow-up
• Reporting

Please ensure you are familiar with the CMA CGM Corporate Internal Mobility guidelines