Offers “Sanofi”

16 days agoSanofi

Cyber Expert - Directories & Privileges M/F

  • Lyon 1er Arrondissement (Rhône)
  • Teaching

Job description

Le contenu du poste est libellé en anglais car il nécessite de nombreuses interactions avec nos filiales à l’international, l'anglais étant la langue de travail.

JOB PURPOSE

Ideally based in Lyon (Carteret), Paris (CRB/CSVB) or Bridgewater, you are part of the Global Cyber Security team within the Digital organization. You will be responsible to develop and keep up your expertise as one of the security governance leaders about Privilege/Access and Directory Services (AD/Azure AD) management.

In an heterogenous and transforming landscape with critical business priorities and new technological challenges, you are contributing to the security design, configuration, monitoring and deviations remediations of Directories and Privilege/Access management solutions, achieve and maintain the cyber compliance, drive the efforts to integrate cyber security at the earliest stages of projects.

MAIN RESPONSIBILITIES

In the scope of Privilege/Access Management and Directory Services (AD/Azure AD/Centrify) the Cyber Security expert will be accountable for

Security Policies

· 
Managing the definition and review of security policies and ensuring their proper application within the global infrastructure landscape and partners

· 
Ensuring a coherent and harmonized definition and adoption of security processes and solutions within the organization throughout their life cycles

· 
Being the owner of the Cyber Access Control policy and its future evolutions

Cyber Compliance and Governances

· 
Establishing and leading cross-functional security committees to ensure alignment across the global Infrastructures organization and with our external partners

· 
Developing, maintaining, monitoring security KPIs and dashboards to manage security risks, track deviations and produce appropriate remediation and improvement plans

· 
Contributing to the crisis management process development
 

Remediations

· 
Ensuring the cyber compliance of Sanofi and its partners through preventive and corrective actions. Lead, contribute or manage the investigation of deviations, definition of the remediation plans and operational implementation

· 
Conducting technical audits and contributing to internal audits. Defining, coordinating and performing sanitation actions

· 
Continuously improve monitoring capabilities around least privilege rule, delegation management, third party authentication, privilege escalation risks. Further expand the deviation types to be monitored and remediation means (Tools, scripts, GPOs)

Strategy and Support

· 
Managing, reviewing and contributing to global projects (Cyber, Infrastructures, Business) around security breaches anticipation and remediations, mergers and acquisitions, Cloud and Azure AD migration, major developments around security technologies and solutions

· 
Driving transformation initiatives to sustain Cyber Security compliance by leveraging leading market practices, monitoring and automation capabilities

· 
Contributing to the definition of the overall strategy for Sanofi's digital infrastructures and services, ensuring that the security risks and directives are included in the roadmaps

CANDIDATE PROFILE

Minimum Qualifications

· 
A degree in Cyber Security or Computer Science or relevant verifiable work experience

· 
3 years of technical experience around Privileges/Access and Active Directory management in a large corporation with multiple lines of business and ideally a Cyber Security culture

· 
Ability to address all security topics on a global scale. Performing in an international, intercultural and transversal environment

· 
Familiar with all security aspects of IS and technologies (Governance, policies, processes, technologies and tools)

· 
Leadership and communication skills to convince and liaise with the various stakeholders, within and beyond the Digital organization

· 
Strong interpersonal skills to foster and maintain collaborations, promote the subject of Cyber Security at all levels of the organization

· 
Good English skills

Desired qualifications

· 
A solid operational experience in accounts, privileges, authentication management across multiple platforms and solutions

· 
In-depth knowledge of architecture design, security best practices, processes, tools around Privileges/Access and Active Directory management

· 
Knowledge around Azure AD architecture and security services

· 
Willing to expand his scope to tackle the Privileges/Access & Directories scope at broader level (Centrify, CyberArk)

· 
Be able to drive investigations on anomalies and propose technical solutions to remediate (scripting/automation, process creation and improvement)

· 
High level of autonomy, strength of proposal and rigor to deal with and bring matters to fruition

· 
Ability to respect commitments, deliver concrete results, handle multiple priorities, increase value delivery by developing and continuously improving security processes and solutions

· 
Experience in transversal management

At Sanofi diversity and inclusion is foundational to how we operate and embedded in our Core Values. We recognize to truly tap into the richness diversity brings we must lead with inclusion and have a workplace where those differences can thrive and be leveraged to empower the lives of our colleagues, patients and customers. We respect and celebrate the diversity of our people, their backgrounds and experiences and provide equal opportunity for all.

As part of its diversity commitment, Sanofi is welcoming and integrating people with disabilities.

Make every future a success.
  • Job directory
  • Business directory