GRC Cybersecurity Specialist

ABOUT THE TECH TEAM

Embark on an exciting journey with our global Tech team, operating in agile mode within a dynamic product organization. Join a collaborative environment where innovation thrives, and your contributions will directly shape the trajectory of our cutting-edge products. As a key player in our agile setup, you'll have the opportunity to drive efficiency, foster creativity, and play a pivotal role in our product development process. Be part of a team that embraces adaptability and values continuous improvement, ensuring we stay at the forefront of technology advancements on a global scale.

THE  TEAM YOU WILL WORK WITH

By joining the TECH department of the Pernod Ricard Group within the cybersecurity team, you will become a member of the Cyber Security Governance, Risk and Compliance (GRC) team. As part of your mission, you will also collaborate closely with the Cyber Defense, Cyber Architecture, and wider Business and TECH teams including Proximity TECH teams in Europe region and Pernod Ricard’s Brand Companies.

WHAT IS EXPECTED OF YOU

A highly motivated and experienced Cyber GRC (Governance, Risk, and Compliance) Specialist to manage our cybersecurity initiatives across our Management Entities in Europe and global Brand Companies along with selected Global Cybersecurity Domains. The ideal candidate will have a strong background in cybersecurity, risk management, and compliance, and will be responsible for defining, implementing, and governing GRC policies and guidelines. This role will involve driving security and privacy risk evaluations, coordinating response actions for suspected data breaches, and supporting the implementation and maintenance of a Cyber Security framework across key security domains.

• Define, help implement, and govern Cyber Security policies, standards and guidelines.
• Perform security and privacy risk evaluations and coordinate response actions in the event of any suspected cyber incident.
• Monitor, evaluate, report on Cyber Security risks to relevant TECH and Business executive committees.
• Govern risk reduction activities for your scope.
• Support in the implementation and maintenance of cyber security framework.
• Drive security within your geographical, domain-specific and TECH portfolio scope.
• Contribute to Cyber Strategy and Roadmap development.
• Drive internal and external security compliance initiatives associated with relevant regional regulations (such as NIS2)
• Support GRC lead and local data protection champions to ensure company adherence to data privacy and data governance requirements.

If you recognize yourself in the description below, don’t wait to apply!

• Bachelor's degree in Information Technology, Cybersecurity, or a related field. A Master's degree or relevant certifications (e.g., CISSP, CISM, CRISC) is a plus.
• 5 years of experience in cybersecurity, risk management, and compliance, preferably in a multinational organization.
• Strong analytical and problem-solving skills.
• Excellent communication and interpersonal skills.
• Fluency in English; French is a plus.
• Risk Management: Expertise in identifying, assessing, and mitigating cybersecurity risks, including third-party risks.
• Compliance: In-depth knowledge of regional regulations and standards related to cybersecurity and data privacy, and local data protection laws in Europe, Africa and Middle East notably NIS2, GDPR.
• Technical Acumen: Strong understanding of cybersecurity technologies, frameworks (NIST, ISO27001, SOC2, MITRE attack framework, etc.) , and methodologies, including penetration testing and security audits.
• Advisory: Capability to advise senior management on GRC matters and recommend actionable courses of action.

Wait, there’s more…

We offer you an outstanding and collaborative workplace that embodies our sharing & conviviality culture, the possibility to work remotely (up to 2 days a week), a very complete mutual insurance, an attractive compensation including profit-sharing, the possibility to train daily, employee events…

Pernod Ricard is committed to offering equal opportunities to all talents. Our recruitment methods focus on skills and competencies.

Job Posting End Date:

Target Hire Date:

Target End Date: