Advisor on Cybersecurity Governance (GRC) - Jobs in Montréal, QC

Job Description

CMA CGM Group, founded by Jacques R. Saadé, is a leading worldwide shipping & logistics group.Now headed by Rodolphe Saadé, CMA CGM reinvents transport and logistics in order to offer an integrated maritime, port and land service that exceeds its customers expectations.Present in over 160 countries through 755 offices, 750 warehouses, equipped with a young and diverse fleet of 511 vessels, CMA CGM serves 420 of the worlds 521 commercial ports and operates on more then 200 shipping lines. The group currently employs 110,000 people worldwide, including nearly 2,400 in its headquarters in Marseilles.We are therefore looking for a GRC cybersecurity advisor profile: Governance - Risk - Compliance. With a risk-based approach, you participate in cybersecurity fund activities, in order to anchor cybersecurity activities in the various business processes and ultimately in the culture of the organization.As a quasi-second line of defense, you establish approaches, methodologies, frameworks, to structure the top-down approach to cybersecurity.The Cybersecurity Governance Advisor reports to the GRC Director.ACTIVITIES :Ensure the governance of activities and processes related to cybersecurityKnow how to conceptualize security management solutionsSet up control frameworks, document them, supervise them, and optimize themCarry out security and control audits in compliance with legal proceduresParticipate in the review and optimization of the activities of our internal partners (HR, Procurement, Finance, Compliance) and external (suppliers and subcontractors)Create effective dashboards to measure and monitor trends and risk levels presented to different levels of managementReview service levels during supplier governance processes with our partnersParticipate in the revision of contracts when necessary with regard to governance aspectsCoordinate internal and external audits relating to cybersecurity aspectsIdentify action plans, monitor them, and facilitate their implementationKeep the documentary corpus on cybersecurity up to date (Policies, norms, standards)Maintain an effective exemption register, based on the balance between security issues and operational realitiesDevelop communications that intervene in awareness raising and training among various user populationsThese activities are not exhaustive and may change according to operational needs.SKILLS :Your profile meets the following criteria:You hold relevant industry certifications in cybersecurity or IT, including:o Certified Information Systems Security Professional (CISSP)o IT Infrastructure Library (ITIL)o ISMS ISO 27001 Lead auditor or Lead Implementero Certified Information System Auditor or Manager (CISA-CISM)10 years minimum experience in a field related to information technologyA minimum of 8 years in information security or auditsYou came from a course focusing on rigor, quality of work and optimization;You have a good understanding of Information Technology operations, processes and methodologies, Audit and internal control methodologies (COSO, Cobit) and organizational resilience processes (BCP / DRP);You have a good understanding of cybersecurity management processes and methodologies (e.g.: ISMS ISO 27001, SMCA ISO 22301, NIST framework)You are adept at popularizing and conveying complex messages to an executive audience, including aspects relating to finance, risk, business impacts and performance metrics;Experience in the Transport / Shipping / Logistics sector is an asset;You speak fluent English.PROFILE and KNOW-BEING:You also have the following qualities:Ability to adapt to various situations and adapt their behavior according to the environment and the type of interlocutorBe proactive to unblock complex situations, in the interest of the organizationCapacity for popularization and synthesis of issues and proposed solutionsAutonomy and proactive behavior,Perfect written communication, ability to analyze and synthesize, especially orallyTeam spirit, pedagogy, ability to develop the skills of its partnersAbility to acquire new functional skillsAbility to work in an international environment, in contact with multicultural and offshore teamsLeadership, perseverance and endurance, challenging the status quoAbility to manage change and unite partners around innovative ideasCome along on CMA CGM’s adventure !Quick Apply

• Terms & Conditions
• New Privacy
• Privacy Center
• Accessibility

For Job Seekers

• Browse Jobs
• Advanced Job Search
• Emplois Quebec

For Employers

• Post a Job

Stay Connected

(function () { var g = function (e, h, f, g) { this.get = function (a) { for ( var a = a + =, c = document.cookie.split(;), b = 0, e = c.length; b < e; b++ ) { for (var d = c[b]; == d.charAt(0); ) d = d.substring(1, d.length); if (0 == d.indexOf(a)) return d.substring(a.length, d.length); } return null; }; this.set = function (a, c) { var b = , b = new Date(); b.setTime(b.getTime() + 6048e5); b = ; expires= + b.toGMTString(); document.cookie = a + = + c + b + ; path=/; ; }; this.check = function () { var a = this.get(f); if (a) a = a.split(:); else if (100 != e) v == h && (e = Math.random() >= e / 100 0 : 100), (a = [h, e, 0]), this.set(f, a.join(:)); else return !0; var c = a[1]; if (100 == c) return !0; switch (a[0]) { case v: return !1; case r: return ( (c = a[2] % Math.floor(100 / c)), a[2]++, this.set(f, a.join(:)), !c ); } return !0; }; this.go = function () { if (this.check()) { var a = document.createElement(script); a.type = text/javascript; a.src = g; document.body && document.body.appendChild(a); } }; this.start = function () { var t = this; complete !== document.readyState window.addEventListener window.addEventListener( load, function () { t.go(); }, !1 ) : window.attachEvent && window.attachEvent(onload, function () { t.go(); }) : t.go(); }; }; try { new g( 100, r, QSI_S_ZN_emko5j2lfGbxDZc, https://znemko5j2lfgbxdzc-indeed.siteintercept.qualtrics.com/SIE/Q_ZID=ZN_emko5j2lfGbxDZc ).start(); } catch (i) {} })();