Information Security Analyst - Business Security and Compliance

How will you CONTRIBUTE and GROW?

The Security Analysts ​​​supports the Information Security Officer to uphold Governance, Risk Management, and Compliance standards across Digital & IT​ environments. Security analysts are essential in maintaining the cybersecurity integrity of Air Liquide's IT and OT systems, as well as its sensitive data by ​ensuring adherence of Digital & IT operations to established ​Global security governance.​

This role integrates into a global cybersecurity organization characterized by a rich diversity of cultures, local and global operational requirements, and complex technological landscapes.

Key Responsibilities

Ensure alignment with Global Cybersecurity Framework 

• Enforcement of Policies, Procedures, Guidelines, etc.

• Through use of Deviation Action Treatment Plans (DTAPs) define risk, remediation plans and compensation controls to reduce risk

• Conducts Security Risk Assessments using Group Tools and Processes (Applications, Data & 3rd Parties)

Review cybersecurity risks for Vendor, Suppliers, Contractors and other Third-Parties  

• Lead the process of critical digital asset compliance including stakeholder communications, reporting, review of evidence and  maintaining compliance score

• Identify privacy and other regulatory requirements including AI evaluations

• Assess compliance with Global Cybersecurity Framework throughout the data and application lifecycle (CDA’s, Global ERP systems)

• Cyber Crisis Management Response & Incidents

Assist in cyber crisis management response and/or cyber crisis simulations

• Coordinates cybersecurity incident response with identified stakeholders  to define and minimize impact

Supports Digital and IT Audits

___________________

Are you a MATCH?

Required Qualifications:

• 4-7 yr of experience in Cyber Security, risk management, and/or compliance

• Certifications in information security and/or cyber security like CISSP, CISM, CGRC

• Demonstrate understanding of risk management, IT controls and related information security standards.

• Knowledge of security control frameworks and standards such as SOC2, ISO 27001, NIST, etc

• Experience securing cloud-based environments

• Experience with regulatory requirements - GDPR, PCI, Medical, FDA, DOT, etc.

• Excellent written and verbal communication skills

Our Differences make our Performance

At Air Liquide, we are committed to build a diverse and inclusive workplace that embraces the diversity of our employees, our customers, patients, community stakeholders and cultures across the world.

We welcome and consider applications from all qualified applicants, regardless of their background. We strongly believe a diverse organization opens up opportunities for people to express their talent, both individually and collectively and it helps foster our ability to innovate by living our fundamentals, acting for our success and creating an engaging environment in a changing world.