Cybersecurity Manager

Our mission

At CyberVadis we are proud to help our growing number of customers with a cost-effective and scalable solution for third-party cybersecurity risk management, which is one of the hottest cyber topics in the market.

Our mission is to provide reliable, globally recognized security assessments and insights, enabling all companies to reduce cybersecurity risk, and drive improvement on protecting themselves.

The team

We are an ambitious, agile and international team (located all around the world in 10 countries). Developed by EcoVadis 6 years ago (the world’s most trusted provider of business sustainability ratings), we are driven by the success of our clients and have a strong background and expertise to offer the leading SaaS solution complemented with a unique evidence-based verification.

We believe that people do their best work when they’re given the freedom to thrive and grow. Thinking big, bringing a positive attitude, and taking full ownership are three characteristics that thread our team together.

The Job role & description

As the most senior operationally involved information security professional in the company, the Cybersecurity Manager goal is to ensure the security and protection of CyberVadis assets by shaping the cybersecurity strategy, develop robust security policies and procedures.

As the primary leader for cybersecurity at both strategic and operational levels, you will coordinate, communicate, and collaborate on all related activities within the organization. Your responsibilities include defining, implementing, and communicating our cybersecurity strategy, ensuring it aligns with our business objectives.

You will supervise the certification and ongoing maintenance of our Information Security Management System (ISMS), ensuring it remains compliant with ISO: standards. Additionally, you will take ownership of continuous cybersecurity risk and incident management, proactively identifying and mitigating potential threats.

In this role, you will advise senior management on cybersecurity risks, emerging threats, and their potential impact on the organization. Your insights and leadership will be crucial in safeguarding CyberVadis' digital assets and maintaining a robust security posture.

Your role shall not be limited to the above and will also constitute the following task:

• Maintain the CyberVadis ISMS ISO 27002:2022 Certification
• Manage an information security analyst/officer and contribute to demonstrate CyberVadis security posture to third parties

This job description is not exhaustive. It may be required additional tasks depending on the manager requirements and company itself.

Competencies & Skills required

• Fluency in English & French and currently based in France
• 5+ years of experience in cybersecurity, preferably in a consultancy role
• A combination of ability to manage and deep cyber security experience is mandatory
• Experience in a global team with a rich multicultural fast paced environment
• Demonstrated experience in operating an ISMS
• Ability to draft policies and procedures at the state of the art
• Track record in self-motivated leadership and excellent communication and listening skills
• Demonstrable experience delivering effective business and technical security solutions processes, tools, and project management
• Certifications are a plus: ISO 27001 Lead Auditor, and/or ISC2, ISACA, GIAC, PASSI

Location: France

Reporting line: Reports to the Cybersecurity Research Director (also CISO)

Interaction: This position interacts with the ISMS team, CTO, DW Manager, Engineering Manager

Business Unit: Information Security

Our team’s strength comes from everyone’s uniqueness and is founded upon mutual respect. CyberVadis commits to equity, inclusion and reducing bias in our hiring processes. CyberVadis does not accept any form of discrimination based on color, national or ethnic origin, ancestry, citizenship, religion, beliefs, age, sex, gender identity, sexual orientation, neurodiversity, disability, parental status, or any other protected characteristic that makes you unique. In your application, we encourage you to remove personal information such as: photographs, marital status, number of children, religion, gender, residential postal code, university graduation date, past medical or parental leave(s) taken, nationality (instead, please state if you are legally eligible to work in the job region/country), university name (instead, please state any degrees obtained and the study major).