Cargo: Information Systems

Tipo de posição: Permanent

Tipo de emprego: Full - Time

Local: Paris

País: France

Infrastructure Security Manager (H/F)

At Global IT, Group Cybersecurity teams ensure that Cybersecurity risks are properly managed within digital transformation of L’Oréal Group.

At worldwide level, Cybersecurity teams:

  • Build L’Oréal Cybersecurity strategy in partnership with business strategy and promote it
  • Define Cybersecurity policies and procedures
  • Support business projects in terms of Cybersecurity and data protection
  • Manage Cybersecurity projects
  • Increase Cybersecurity culture
  • Manage Cybersecurity incidents and crisis
  • Control the level of maturity within the Group

Within Group Cybersecurity teams, you will be in charge to:

  • Ensure the Group Infrastructure implements the Cybersecurity strategy and policies to fit the  stakes and risks
  • Support Group Infrastructure projects
  • Strengthen Cybersecurity culture of Infrastructure teams
  • Control and report on Cybersecurity maturity level at Infrastructure level

Within the Group Cybersecurity team, you will be the first point of contact for Infrastructure Security topics and will:

  • Contribute to the implementation of the Group Cybersecurity strategy and policies
  • Co lead the infrastructure projects dedicated to cybersecurity
  • Implement risk analysis, propose related action plans and perform close follow-ups
  • Approve Security architecture and ad-hoc exceptions
  • Perform a Cybersecurity watch
  • Perform controls and contribute to the Cybersecurity reporting
  • Build strong relationship with Infrastructure teams in a collaborative and constructive spirit



                    Master’s degree in Information Technology

Professional experience:

                    You have a successful experience of at least 8 years, split between Infrastructure and Cybersecurity within a consultancy firm or a Fortune 500 company

Technical skills:

  • Strong Cybersecurity knowledge, preferably supported by a worldwide certification in the field (CISSP, CISM, ISO 27001 LI/LA…)
  • Strong knowledge of Infrastructure (e.g. Network, Server, Database, Cloud hosting, Workstations, O365…)
  • Experience in Privileged Access Management, Identity and Access Management, End point protections solutions
  • Knowledge of Cybersecurity frameworks (NIST, ISO 27001, …)
  • Experience in risk analysis
  • Strong skills in Excel and PowerPoint

Management skills:

  • Ability to manage consultancy teams (i.e. penetration testing)
  • Ability to communicate complex ideas effectively, both verbally and in writing, in English and French with international stakeholders and with Cybersecurity stakeholders within the Group

Interpersonal skills:

  • Willingness to learn and develop new hard and soft skills
  • Ability to navigate within a fast-moving environment
  • Strong analytical skills
  • Ability to lead workshops
  • Fluency in English is essential
Position based at Clichy (92) with regular meetings within Paris area and rare business trip abroad