Job Description
Safran is an international high-technology group, operating in the aviation (propulsion, equipment and interiors), defense and space markets. Its core purpose is to contribute to a safer, more sustainable world, where air transport is more environmentally friendly, comfortable and accessible. Safran has a global presence, with 100,000 employees and sales of 27.3 billion euros in 2024, and holds, alone or in partnership, world or regional leadership positions in its core markets.Safran is in the 2nd place in the aerospace and defense industry in TIME magazine's 'World's best companies 2024' ranking.Safran Electronics & Defense offers its customers onboard intelligence solutions allowing them to understand the environment, reduce mental load and guarantee a trajectory, even in critical situations, in all environments: on land, at sea, in the sky or space.
The company harnesses the expertise of its 13,000 employees towards these three functions: observe, decide and guide, for the civil and military markets.As the Chief Information Security Officer (CISO) for the Actuation GBU/subsidiary, you play a central role in safeguarding the integrity, confidentiality, and availability of all Information Systems (IS) across the GBU's sites. You report hierarchically to the CISO of Safran Electronics & Defense and functionally to the Actuation GBU IT Department.You are responsible for ensuring compliance with all applicable internal and external security frameworks, including (subject to nationality constraints):* Safran Information System Security Policy* NCSC Cyber Assessment Framework* France IGI 1300* Export Control, ITAR, and related regulatory requirementsKey Responsibilities1. Governance & Compliance* Oversee and monitor accreditation and approval processes for all local IS within your scope.* Ensure compliance with Safran ISS policies and all relevant national and international regulations.* Contribute to defining security objectives and requirements for IS across the GBU.* Develop, implement, and maintain IS security procedures.* Conduct audits and continuous monitoring to ensure adherence to ISS rules.* Monitor local enforcement of applicable data protection and regulatory requirements.2.
Security Expertise & Project Support* Provide ISS expertise and support for GBU IT projects, including Secure-by-Design practices.* Support Industrial Management teams in securing operational and industrial environments.* Act as the primary ISS point of contact for local authorities and external contractors.3. Awareness, Training & User Engagement* Advise, inform, and raise awareness among users on ISS best practices (encryption, removable media, travel procedures, etc.).* Deliver onboarding ISS training for newcomers and recurring awareness sessions for all staff.* Conduct targeted awareness sessions for newly authorized personnel or those renewing authorization.4. Incident Response & Operational Security* Manage ISS alerts originating from Safran CERT/SOC and the SED ISS operational unit.* Handle alerts on administrator and user workstations, including first-level forensic analysis, user interviews, and coordination with Local Support teams.* Escalate issues requiring clarification or broader company involvement to central ISS teams.Candidate Profile* Master's degree in cybersecurity, information systems, or a related field (or equivalent experience).* Broad, versatile expertise in information systems security.* Knowledge of British, US, French, or European regulations related to the protection of national defence information is a strong advantage.* Excellent interpersonal and communication skills, with the ability to educate and influence stakeholders at all levels.* Demonstrated availability, reliability, and strong team spirit.* Comfortable working in an international, multi-site environment with regular travel.TPBN1_UKTJ