Senior Manager, IS Security Specialist
Listed on 2026-07-01
-
IT/Tech
Cybersecurity, Information Security, IT Consultant
Senior Manager Is Security Specialist
In the context of the group's security strategy (France, United States, and subsidiaries), the Senior Manager Is Security Specialist ensures the protection of the information system in close collaboration with the security, infrastructure, and business teams. He/she contributes to:
- Piloting and optimizing the security of the information system through structuring projects and continuous improvement initiatives.
- Contributing to the governance of the information system security: definition of policies, documentation, and operational implementation.
- Administering the security platforms and ensuring the response to security detections and incidents.
- Operating in a regulated environment.
- Contributing, according to the needs of the information systems department, to cross-functional projects beyond the security perimeter.
Administration & Supervision of Security Tools
- Administer the entire set of group security platforms and services in collaboration with their manager.
- Manage vulnerabilities and handle security incidents in collaboration with the outsourced SOC; lead remediation cycles.
- Deploy, maintain, and monitor IT security solutions; implement recommendations from audits and risk assessments.
- Be a force of proposal on the hardening of infrastructures, the management of identities and privileges, and the evolution of security strategies.
- Contribute to the evaluation of IT risks and the security audit of partners and subcontractors.
Security Project Management- Lead or contribute to IT security projects from framing to deployment, in coordination with IT teams, business units, and providers.
- Bring security expertise to any IS project.
Document Management & Reporting- Write and maintain security documentation, policies, and procedures.
Follow-Up of Actions & Reporting- Define and follow security KPIs; produce regular dashboards for management.
- Conduct periodic security reviews (access, configurations, incident reviews).
Technological Vigilance & Anticipation of Threats- Ensure active vigilance on the evolutions of cyber threats, security tools, and regulations; formulate evolution recommendations adapted to the group's context.
Competence:Profile:
Engineer's degree or Master 2 in information systems security, computer science, or related field. Certifications appreciated: CISSP, CISM.
Minimum 3 years of experience in information systems security. Experience in an international and/or industrial environment (biotech, pharma, medtech) is highly appreciated.
Competence:
· Solid experience in administration on security platforms: EDR/XDR, cloud protection, email security, identity management, firewalls, bastion, SIEM, SOAR, LDAP/Active Directory.
· Experience managing M365/O365, Azure, MDM, RMM platforms appreciated.
· Knowledge of security frameworks and standards: type ISO 27001, NIST...
· Excellent command of French and English (oral and written).
· Confirmed writing skills: ability to write clear policies, procedures, and reports for different audiences (technical and management).
Autonomy, method, and rigor; ability to manage multiple projects and priorities simultaneously in a dynamic environment.
Behavioral Competence:
- Curiosity: Continue to explore new horizons. Ask "Why?" and especially "Why not?"
- Courage: Take intelligent risks and help each other to constantly improve. Push the limits, turn challenges into opportunities. Take responsibility for our choices, our opinions, our actions.
- Collaboration: Learn from each other. Grow and develop as a multicultural and international team, serving our common goals.
- Credibility: Give the best of ourselves. Our transparency and know-how are the basis of our relationship with our patients, partners, and shareholders. Data and results are what matter most to us.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).