Head of Security Governance — Deputy CISO — GRC lead (x/f/m)
Tasks
- Administer GRC platforms dashboards and workflows
- Apply CSPM and cloud governance for shared responsibility
- Automate compliance evidence collection
- Configure and own GRC tooling
- Coordinate security audit programme with internal audit
- Define contractual security requirements
- Define security controls framework standards and coverage tracking
- Facilitate security risk cartography
- Lead Management Review
- Manage BCP and DRP governance
- Manage ISMS scope and statement of applicability
- Own ISO 27001 ISMS
- Own incident governance and ICT incident escalation
- Prioritize vulnerabilities based on business risk
- Produce risk treatment plans
- Provide DORA incident reporting support
- Review architecture for control gaps
- Run internal audit programme
- Run third party security risk assessments
- Script evidence collection and automate control testing
- Translate regulatory requirements into security controls
- Use policy as code for security governance
Perks/Benefits
- Autonomy
- Board exposure
- Collaborative work environment
- Cross-functional influence
- Opportunity to automate compliance
Skills/Tech-stack
Archer | Audit Evidence Automation | Audit evidence | BCP | CSPM | Cloud Governance | DORA | DRP | EBIOS RM | Evidence automation | GRC | Governance Risk | Governance Risk and Compliance | HDS | ICT incident management | ISMS | ISO 27001 | Incident Management | Incident escalation | Information Security Management | Information Security Management System | Information security | Management System | NIS2 | NIS2 compliance | OPA | Open Policy Agent | PGSSI S | Policy Agent | Policy-as-Code | Python | RGPD | Risk Management | Risk and Compliance | SCP | Security Audit | Security Management System | Security assessment | Security controls | ServiceNow | Third Party | Third-Party Risk | Vendor Security Assessment | Vendor security | Vulnerability Management | “as-code”
Education
N/A
Roles
CISO | Deputy CISO | GRC Lead | Head | Head of Security | Head of Security Governance | Lead | Security | Security GRC Lead | Security Governance
Related jobs
-
AWS | Application Security | Azure | CI/CD | Container SecurityDiscount travel offers | Free event tickets | Hybrid work model | On-site fitness center | Remote workSenior-level Full TimeAix-en-Provence, Provence-Alpes-Côte d'Azur, France R7h ago
-
Engineering Manager - Security Squad EUR 61K-70KChromebook | Cloud platform | Datadog | Datastores | FluxCarpooling benefits | Employee stock ownership plan | Extra parental leave | Free carpooling and bus rides | Healthcare coverageMid-level Full TimeParis, France R2d ago
-
.NET | ASVS | Agile | Angular | AnsibleAutonomy learning platforms | Employee representative council | Health insurance | Meal vouchers | Profit sharingSenior-level Full TimeColomiers, Occitanie, France R3d ago
-
CERT | CNAPP | Cybersecurity | Detection and Response | EDREmployee representative council CSE | Health insurance | Meal vouchers | Profit-sharing bonus | Referral bonusMid-level Full TimeCourbevoie, IDF, France R4d ago
-
Azure | Azure Defender | Azure Defender for Cloud | CVE | CVSSCompany restaurant access | Discount on company products | ELearning platform | Eco responsible building and concierge services | Internal mobilityEntry-level Contract Full TimeBoulogne-Billancourt, IDF, France R9d ago
-
Consultant(e) Senior SOC & CERT – Pilotage de la Performance Cyber (H/F) - Cybersécurité - Toulouse EUR 48K-55KCybersecurity | EBIOS RM | EDR | Event Correlation | Incident ResponseCareer development opportunities | Employee Incentive Plan | Employee representative council | Health insurance | Meal vouchersSenior-level Full TimeColomiers, Occitanie, France R9d ago
-
Correspondant Sécurité des SI Groupe H/F EUR 55K-70KData Privacy | GRC | IAM | ISO 27001 | Incident ManagementFlexible working hours | Frequent international travel | Telework possibleSenior-level Full TimeEurope, France, Paris, Boulogne Edouard Vaillant R15d ago
-
Access Management | CERT | CNAPP | Cyber Use Cases | Event CorrelationAutonomous learning platforms | Conference access | Employee representative council | Health insurance | Meal vouchersMid-level Full TimeCourbevoie, IDF, France R17d ago
-
Archer | CISM | CISSP | Cybersecurity | EBIOS RMCareer management support | Certifications support | Health and wellbeing benefits | Paid training | Partially reimbursed holidaysMid-level Full TimeIssy-les-Moulineaux, FR R19d ago
-
DevSecOps EUR 60K-79KAWS | Ansible | Azure | Azure DevOps | BashFlexible working arrangements | Hybrid work | Learning & development time | Lunch voucher | Remote work flexibilitySenior-level Full TimeParis R29d ago
-
Engineer Manager Security – Remote-First EUR 75K-85KAccess Management | Alerting | Authentication | By Design | CI/CDQuarterly in-person meetings | Remote-first work cultureSenior-level Full TimeParis, France R30d ago
-
AWS | Access Control | Access Management | Active Directory | AzureEmployee representative body | Health insurance | Holiday bonuses | Meal vouchers | Profit sharingSenior-level Full TimeCourbevoie, IDF, France R1mo ago
-
Global Security Officer - IT Security - F/H EUR 70K-80KAudit management | ISO 27001 | Information Security Management | Information Security Management System | Information securityMid-level Full TimeLes Clayes-sous-Bois, FR R1mo ago
-
Ingénieur Cybersécurité H/F EUR 43K-43KActive Directory | Bastion | CIS | Data Loss Prevention | Data ProtectionCoop bonus | Employee committee benefits | Health coverage | Meal tickets | Paid time offSenior-level Full TimeMontigny-le-Bretonneux, 78, France R1mo ago
-
Lead Tech Full-Stack Cybersécurité (SIEM + Outil de Veille Vulnérabilités) - Défense & Sécurité - Rennes EUR 45K-53KBeats | CI/CD | CTI | Cypher | DockerCooptation bonus | Employee committee CSE | Health insurance | Meal vouchers | Profit-sharing bonusSenior-level Full TimeCesson-Sévigné, Bretagne, France R1mo ago
-
Team Lead cybersécurité service MCS (veille de vulnérabilité) - Défense & Sécurité - Rennes EUR 45K-55KAgile | Akamai | Burp Suite | CVE | CVSSCareer development | Employee Committee | Health insurance | Meal vouchers | Profit sharingSenior-level Full TimeCesson-Sévigné, Bretagne, France R1mo ago
-
Access Management | Action Planning | Application Security | Audit management | By DesignHealth coverage | Meal vouchers | Telework 1 to 2 days per week | Training opportunities | Transport reimbursementSenior-level Full TimeParis, IDF, France R1mo ago
-
Security Engineer - Tech Lead (f/m/d) EUR 43K-52KAPI Management | AWS | Application Security | CI/CD | CNAPPInternational career opportunities | Local project team | Provided equipment | Technical certifications | Telework 2 days per weekSenior-level Full TimeLille, Upline, Nord, France R1mo ago
-
Security Engineer - Tech Lead (f/m/d) EUR 43K-52KAPI Management | AWS | CI/CD | CNAPP | CSPMCompany-provided equipment | International career opportunities | Telework | Training and developmentSenior-level Full TimeParis, Paris, France R1mo ago