Share this Job
Apply now »
ID:  114801

Marseille, FR

BISO Air Cargo


CMA CGM Group, founded by Jacques R. Saadé, is a leading worldwide shipping & logistics group.

Now headed by Rodolphe Saadé, CMA CGM reinvents transport and logistics in order to offer an integrated maritime, port and land service that exceeds its customers' expectations. 

Present in over 160 countries through 755 offices, 750 warehouses, equipped with a young and diverse fleet of 511 vessels, CMA CGM serves 420 of the world's 521 commercial ports and operates on more then 200 shipping lines. The group currently employs 110,000 people worldwide, including nearly 2,400 in Marseille, in its headquarters in Marseilles.





The Business Information Security Officer’s (BISO) role will be the focal point for effective engagement between CMA CGM Air Cargo and the CMA CGM Group Information Security function. This role will be a trusted adviser to senior business and technology stakeholders and provide broad knowledge of CMA CGM’s Information Security strategies, policies, processes, architecture and road maps to enable the CMA CGM Air Cargo division to understand and meet Information Security requirements.



  • Build and maintain effective relationship with the business tower’s CMA CGM Air Cargo stakeholders. Be the voice of Information Security in the tower and the voice of the tower within Information Security
  • Facilitate planning, introduction, delivery of Information Security services and initiatives e.g.
    • To support compliance activities, security audits
    • Security capability / maturity improvement
    • Delivery of point services such as vulnerability assessments, cybersecurity assessments, vendor assessments
    • Business tower security awareness and education
    • Delivering targeted security and risk briefing
  • Determines security requirements by evaluating business strategies and threat landscapes
  • Ensure that policy compliance is appropriate to the organizational and business tower’s level of risk acceptance
  • Demonstrate to stakeholders that appropriate controls are in place and oversee/create actions plans to manage improvement or change where necessary
  • Advise stakeholders on how to achieve the relevant controls and assist with solutions to support them
  • Where necessary ensure that processes are documented and communicated in language that is relevant and understandable to non-technical audiences
  • Support security initiatives deliveries as needed and be in a position to demonstrate and track progress to stakeholders
  • Raise the profile of security within the organisation by being pro-actively involved with stakeholders and customers
  • Establishment of ongoing cybersecurity monitoring and compliance according to best practices
  • Develop and maintain close working relationships with business stakeholders, IT & operational teams
  • Establish the vulnerability level of the business tower and recommend the measures necessary to ensure the protection of the company
  • Lead business tower participation and provide guidance in security incidents and other investigations
  • Act as a mentor and contribute to the development of the team in areas of expertise
  • Any other duties relating to the remit of a role of this standing as required by the needs of the business
  • Animate regular governance meetings with business stakeholders based on a dashboard to report to the business and capture proactively new initiative from the tower
  • Promote and develop cybersecurity awareness and cybersecurity by-design culture in CMA CGM Air Cargo




  • Education: 
    • Bachelor or Master degree in Computer Science, Information Technology or relevant degree  
    • IoT or OT certification such as CCNA Industrial, IoTF…
    • Security certifications such as CISSP, CISM or GIAC Certifications an asset


  • Knowledge & Experience:  
  • Knowledge of all areas of IT and OT Security across technical and GRC domains (SCADA, ICS, IoT …)
  • Knowledge of standards and regulations governing the security of information (ex. NIST CSF, NIST 800-82, ISO 27001, ISO 62443, IMO) an asset
  • Up-to-date knowledge of cyber and information security trends and threats facing air transportation industry, logistics and transportation services
  • Minimum (8) years of experience in information security mixed with OT technical background
  • Proven skills and experience balancing the security needs with the business requirements to deliver world-class service to internal and external customers
  • Ability to manage multiple complex priorities and competing agendas without express authority over delivery teams
  • Project management experience highly desired
  • Ability to interpret and apply policies and regulations across a large, complex business
  • High level of interpersonal skills to interact with leaders at multiple levels and facilitate team interactions
  • Preferred: knowledge of air transportation security environment, risks and regulations
  • Other:
    • The ability to interact with CMA CGM colleagues, build good relationships at all levels and across all business units and organisations, and the ability of influence stakeholders of all levels. Change management skills an asset
    • Excellent verbal, written and interpersonal communication skills. Listens and communicates technical subjects to both technical and nontechnical audiences, flexes style to suit the needs of the audience
    • Ability to work with others effectively, with 3rd parties, internal teams, and international business units, promoting knowledge sharing within and across teams
    • Highly self motivated and directed, with keen attention to detail
    • Analytical skills, pragmatic approach to IT and OT security issues
    • Planning, organization and coordination skills
    • Ability to properly manage time and priorities
    • Leadership, team spirit, creativity, rigor and quality
    • Customer-oriented approach
    • Fluent English mandatory, French optional

Come along on CMA CGM’s adventure !










Apply now »