Cybersecurity Director

Reporting to the Senior Director of IT, the Director of Cybersecurity is responsible for planning, organizing, directing, and controlling all activities related to IT security and the protection of the company's digital assets. They define and implement the overall cybersecurity strategy, ensure compliance with standards and regulations, and proactively manage risks. The incumbent works closely with IT management to align security policies with the company's strategic objectives. As a leader, they play a motivational role with their specialized team, foster its development, and ensure an organization-wide security-oriented culture. They oversee the prevention, detection, and response to incidents while maintaining constant vigilance on emerging threats and technologies.

MISSION

• Define and lead the company's overall cybersecurity strategy, in alignment with IT objectives and top management.
• Implement the necessary tools, processes, and policies to protect critical data, systems, and infrastructures.
• Provide security and governance expertise across all areas of the company by advising management and employees.
• Strengthen organizational resilience against cyber threats through concrete actions and proactive communication.
• Develop defense plans approved by management, including required financial investments.
• Monitor and present performance indicators to demonstrate risk management and reassure management.
• Maintain a culture of digital security by implementing ongoing training and awareness initiatives.

ROLE

• Supervise internal and external teams dedicated to information systems security.
• Cover all aspects of cybersecurity: prevention, detection, response, compliance, and awareness.
• Define and centralize IT defense solutions, ensuring their deployment within deadlines and budgets.
• Work closely with the Senior Director of IT and regularly report to top management.
• Implement the CYBER strategy through policies and procedures compliant with standards (NIST, CIS, MITRE, ISO, GDPR, PCI DSS, etc.).
• Oversee security audits, crisis management in case of incidents, and coordination of response plans.
• Maintain continuous vigilance on threats and technological developments to adapt the strategy.
• •Serve as the official point of contact with regulatory authorities and cybersecurity organizations (ANSSI, CERT-FR, etc.).

SKILLS

• Bachelor's degree in IT engineering or a related discipline;
• 12 to 15 years in similar roles, ideally in a manufacturing environment;
• Deep technical expertise in security technologies, protocols, operating systems, databases, and networks (on-premise and cloud).
• Mastery of protection tools: firewalls, antivirus, access management systems, monitoring solutions.
• Management, communication, and crisis management skills.
• Ability to withstand stress and effectively coordinate teams during a cyberattack.
• Strategic leadership to challenge internal practices and improve overall security posture.
• Ability to lead audits, penetration tests, and simulations to strengthen security.
• Professional certifications are an asset: CISSP, CISM, CEH, ITIL...