Cybersecurity and ISMS Expert H/F

Ref
ISMSeXP1219
CDI
Paris
Roubaix
France
Our Security Operations Center (SOC) team constantly tracks down potential weak links in the OVH ecosystem.
It works with other departments to strengthen the security of our infrastructure, servers, applications and networks. In addition, the SOC designs and implements tools to ensure the best possible security for our customers' data.

Your missions ?

Be responsible for the implementation of Information Security Management Systems on OVH products

  • Facilitate the implementation and maintenance of information security management systems (ISMS) on information systems in support of products
  • Document the security measures in place, with a very strong focus on customer risks, particularly with regard to data protection
  • Provide daily coaching to product teams in the management of risks, incidents and crises related to cybersecurity
  • Manage and coordinate security improvement action plans with product teams
  • Manage the consideration of security requirements related to customer requests and applicable regulations to feed product roadmaps

Coordinate and align the level of product security and quality within OVH's global security management system

  • Align product teams with OVH ISSP rules
  • Report cybersecurity risks to security management committees
  • Support the deployment of OVH Group's best practices and tools within the product teams
  • Integrate security into change management processes, production incidents and more generally all operating processes

Carry out product certification procedures

  • Manage GDPR compliance and ISO 27001, 27017, 27018, PCI DSS, HDS and SecNumCloud certification projects
  • Lead internal and external information security audits on the scope
  • Define and implement an audit program aligned with other audit approaches and operational constraints
  • Manage and coordinate corrective action plans following audits

 

Align cybersecurity approaches across the organization

  • Lead several transversal project teams in parallel
  • Work within a team of ISMS managers
  • Play the role of ambassador of the security team to the operational teams
  • Promote group tools to product teams and support their deployment
  • Feed back field information to security management committees

 

Align practices with market expectations and improve internal and external approaches

  • Exchange with customers and sales and support teams to identify security and compliance expectations
  • Carry out normative and competitive monitoring on compliance and security issues
  • Participate in technical communication from a product security perspective
  • Participate in events, lead technical workshops (customers, partners, interns)

Your skills ?

Technical Skills

  • In-depth knowledge of management systems (ISO 27001...)
  • Knowledge of security standards (GDPR, ISO 27001, PCI DSS, HDS, HIPAA, etc.)
  • Strong general knowledge of information systems and ideally of IaaS, PaaS and SaaS solutions
  • Mastery of complex data management and interpretation
  • Fluent English

 

Professional Skills

  • Ability to work in a team environment
  • Transversal project management
  • Curiosity
  •  Analytical mind

Votre équipe

SOC

Notre équipe Security Operations Center (SOC) traque en permanence les potentiels maillons faibles de l'écosystème OVH. Elle travaille… En savoir +