Head of Security Risk Management
Courbevoie, FR, 92400
EUR 93K-129K (estimate) Executive-level Full Time
Tasks
- Advise on security risk mitigation
- Align security risk practices with regulations and standards
- Capture integrate physical security incidents into enterprise risk framework
- Coordinate audit evidence and documentation
- Define security risk management framework
- Deliver security risk reporting to executive leadership and board
- Ensure MSP services meet risk appetite and control effectiveness
- Ensure contracts include security controls
- Ensure governance process continuous improvement
- Govern enterprise security risk register
- Integrate MSP operational risks into enterprise risk register
- Lead security assurance and control testing
- Lead security risk identification assessment and prioritization
- Lead third party and supply chain security risk management program
- Maintain audit readiness
- Manage customer audit outcomes to resolution
- Manage security risk mitigation plans
- Oversee policy adoption and control effectiveness
- Oversee security risk assessments for critical suppliers and cloud providers
- Own security policy framework
- Provide physical security risk governance and assurance
- Respond to customer security assurance reviews
- Review MSP incident reports threat intelligence and vulnerability findings
- Run supplier due diligence onboarding and ongoing monitoring
- Support customer audits and due diligence requests
- Support internal and external audits and regulatory reviews
Perks/Benefits
- N/A
Skills/Tech-stack
800-53 | Audit Readiness | CIS Controls | Cloud Security | Control Testing | DORA | GDPR | ISO 27001 | ISO 27005 | Incident reporting | Information security | MSP Compliance | NIS2 | NIST 800 | NIST 800-53 | NIST CSF | PCI DSS | Physical security | Regulatory Compliance | Risk Assessment | Risk Management | Risk Mitigation | Security Architecture | Security Governance | Security Policy | Security Risk | Security Risk Management | Security assurance | Security metrics | Supply Chain | Supply chain security | Third Party | Third-Party Risk | Third-party risk management | Threat Intelligence | Vendor Risk | Vendor risk management | Vulnerability Management
Education
N/A
Related jobs
-
Strategic Cyber Security Consultant EUR 130K-148KCloud Governance | Cloud Security | Cybersecurity | Detection engineering | Enterprise ArchitectureBenefits | Bonus target | Equity | Travel opportunitySenior-level Full TimeFrance; Germany1d ago
-
Senior Security Engineer - freelance EUR 43K-84KAES | AWS KMS | Application Firewall | Automation | FirewallEnglish CV required | Freelance roleSenior-level Contract FreelanceStrasbourg, Grand Est, France1d ago
-
Cyber Security Architect EUR 40K-40KApplication Security | By Design | Cloud Security | Cryptography | GDPRAnnual bonus scheme | Employee discounts | Financial support for new parents and caregivers | Free tax return assistance | Gym accessSenior-level Full TimeMilan Monte Penice, Italy R1d ago
-
Team Lead cybersécurité service MCS (veille de vulnérabilité) - Défense & Sécurité - Rennes EUR 45K-55KAgile | Burp Suite | CVE | CVSS | CWEBonuses | Career development opportunities | Coaching | Conference access | Employee welfare councilSenior-level Full TimeCesson-Sévigné, Bretagne, France R1d ago
-
Senior-level Full TimeAnywhere in France, Belgium, Spain R2d ago
-
AI Risk | AI risk management | Advanced Threat Analysis | Backup and Recovery | Cloud SecurityGlobal inclusive work environment | Hybrid remote work | Industry conference participation | Paid time off | Professional developmentExecutive-level Full TimeFrance2d ago
-
Consultant GRC EUR 55K-65KAudit Methodology | Audit Reporting | Compliance Management | Cyber Compliance | DORASenior-level Full TimeMarcq-en-Barœul, Nord, Hauts-de-France, FR3d ago
-
Lead Security (F/H) EUR 46K-52KAWS | Application Security | Cloud Security | Cloud platform | ComplianceContinuous learning programs | Inclusive work environment | Internal communities | Training pathwaysSenior-level Full TimeLA CIOTAT - LA VIGIE, France3d ago
-
Cyber Security Specialist EUR 45K-55KAWS | AWS GuardDuty | AWS Security | AWS Security Hub | Access ManagementPaid time off | Pension plan | Training and developmentSenior-level Full TimeBesançon, Bourgogne-Franche-Comté, France3d ago
-
Senior Security Engineer EUR 56K-84KBigQuery | CNAPP | Cloud Armor | Command Center | Dependency ScanningBook purchase budget | Exercise classes | Healthcare coverage | Hybrid remote policy | Meal vouchersSenior-level Full TimeParis office3d ago
-
Administrateur Système et Sécurité (H/F) EUR 15K-15KAWS | Active Directory | Anssi | Antivirus | AzureInclusive workplace | Internal communities | Training and development | Work-life balanceEntry-level Full TimeCarquefou, France5d ago
-
Azure | Azure Defender | Azure Defender for Cloud | CVE | CVSSCompany restaurant access | E-learning access | Eco-friendly office | Employee discount | Internal mobilityEntry-level Contract Full TimeBoulogne-Billancourt, IDF, France R6d ago
-
ASPM | Application Security | Cloud Security | Compliance | Distributed SystemsAnnual company retreats | Co-working access | Flexible Distributed Culture | Home office support | Learning and development budgetMid-level Full TimeFrance R7d ago
-
ASPM | Application Security | Authentication | Authorization | Burp SuiteCareer growth | Flexible work schedule | Inclusive workplace | International team | Remote-friendlyMid-level Full TimeFrance7d ago
-
Product Security Officer cortAIx Factory F/H EUR 38K-42KArtificial Intelligence | Azure | CI/CD | Cloud Security | Cloud platformContinuous training | Inclusive work environmentSenior-level Full TimeCortAIx Factory Issy, France7d ago
-
Senior Security Analyst - GRC EUR 42K-72KAWS Security | Access Controls | Application Security | Audit management | Azure SecurityHybrid working model | Inclusive work environment | International team | Snacks and weekly lunches | Social eventsSenior-level Full TimeMassy - France7d ago
-
Information Security Risk Manager (f/m/d) GBP 46K-60KControl effectiveness | Control monitoring | GRC | ISO 27001 | Information Security FrameworksAdditional pension insurance | Flexible four-day work week | Hybrid remote work | Paid special leaves | Peer to peer voucher programMid-level Full TimeAmsterdam, North Holland, Netherlands; Berlin, Berlin, …9d ago
-
Cybersecurity Champion EUR 35K-45KAccess Management | Compliance Management | Cybersecurity | DICOM | Enterprise ArchitectureMid-level Full TimeSuresnes - Verdi, France9d ago
-
Cybersecurity Champion EUR 35K-45KAccess Management | Compliance | Cybersecurity | Device connectivity | Enterprise ArchitectureMid-level Full TimeSuresnes - Verdi, France9d ago
-
IT/Security Engineer - Alternance Septembre 2026 EUR 26K-26KArtificial Intelligence | Automation | CIA triad | Cloudflare | Cloudflare ZTAEntry-level ApprenticeshipParis10d ago
-
Bastion host | CSPM | Cloud Security | Cloud Security Posture | Cloud Security Posture ManagementAutonomy | Knowledge sharing | Mobility opportunities | Training opportunitiesSenior-level Full TimeLille, Hauts-de-France, France10d ago
-
Security Engineer EUR 61K-70KAWS | Access Management | Alerting | Bash | Cloudflare AccessCareer development opportunities | Health insurance for children | Lunch vouchers | Remote/hybrid work | Sponsored gym membershipMid-level Full TimeParis, France11d ago
-
Snr Penetration Tester - IT/OT EUR 50K-74KASP | Active Directory | Automation | BGP | C#Learning and development | Travel opportunitiesMid-level Full TimeParis, France (Hybrid) R11d ago
-
Professional Services Staff Consultant EUR 54K-79KAutomation | Cloud Security | Correlation rules | Detection engineering | EDRHybrid team collaboration | Remote work | Travel allowanceSenior-level Full TimeParis, Île-de-France Region11d ago
-
Access Management | Application Firewall | CI/CD | Cloud Security | DevSecOpsCoaching | Company events | Gym membership | Health insurance 50 percent | Material budgetSenior-level Full TimeParis12d ago