Information Security Officer - AMEI & GDDS

Role Overview: As the AMEI DDS Information Security Officer, your primary role will be to lead information security within the scope by providing guidance on various cyber risks and assisting in the development of plans to mitigate them. In addition to standard Information Security Officer responsibilities for the AMEI entity, you will serve as the main point of contact for all other DDS ISOs utilizing the GDDS. You will also hold responsibility for the cybersecurity controls delegated to you by these ISOs. Furthermore, as a cybersecurity expert, you will participate in entity projects and analyses while overseeing cybersecurity controls. You will operate within the Digital and IT Risk Management department, managing operational risks for D&IT on a global scale. You will report directly to the Digital & IT Risks Director within the CDIO Office and functionally report to the Group Information Security Officer in GDSD. Key Responsibilities: - Translate business risks into security requirements using the Air Liquide Cyber Risk Assessment methodology (DRMT) - Implement and oversee the digital security framework for your entity, ensuring compliance with its implementation - Conduct cybersecurity awareness campaigns for all users within your entity - Provide application security guidance by training developers and project teams on secure coding techniques, particularly DevSecOps - Manage cybersecurity for suppliers and third-party entities - Ensure prompt remediation of vulnerabilities within your scope based on vendor alerts, scan results, patch management, and pentest outputs - Develop, document, and test disaster recovery plans aligned with business needs - Receive support from a cybersecurity specialist who reports directly to you Qualifications Required: - Minimum 7 years of robust experience in cybersecurity, particularly within the technical landscape of DDS - Graduation in computer science or a related technical field (Preferably) - Certification in CISA, CISSP, CRISK is a plus - Demonstrated leadership skills with a risk-balanced approach to implementing cybersecurity measures - Strong capacity for synthesis, prioritization, and communication, including the ability to teach, listen, and simplify - Autonomous, rigorous, organized, and structured work approach - Proficiency in C2 English, with knowledge of another language such as French being advantageous (Note: Omitted additional details of the company as it was not explicitly mentioned in the job description),