Intenship - TPRM Analyst

Led by Rodolphe Saadé, the CMA CGM Group, a global leader in shipping and logistics, serves more than 420 ports around the world on five continents. With its subsidiary CEVA Logistics, a world leader in logistics, and its air freight division CMA CGM AIR CARGO, the CMA CGM Group is continually innovating to offer its customers a complete and increasingly efficient range of new shipping, land, air and logistics solutions.

Committed to the energy transition in shipping, and a pioneer in the use of alternative fuels, the CMA CGM Group has set a target to become Net Zero Carbon by 2050.
Through the CMA CGM Foundation, the Group acts in humanitarian crises that require an emergency response by mobilizing the Group’s shipping and logistics expertise to bring humanitarian supplies around the world.

Present in 160 countries through its network of more than 400 offices and 750 warehouses, the Group employs more than 155,000 people worldwide, including 4,000 in Marseilles where its head office is located.

THE ROLE 

• The primary responsibility of the Third-Party Risk Management Analyst Intern will be to help the GRC team implementing the TPRM software solution.
• TPRM Analyst intern will participate in all aspects of TPRM lifecycle starting with information gathering process, due diligence/documentation review, assessing 
• risk including formalized risk analysis and identifying potential gaps and providing security solutions to mitigate risks.
• This position will interact with individuals all throughout the company as well as third parties. The Cybersecurity Risk Analyst intern report to the Cyber Risk 
• Manager and will be under the supervision of the TPRM Team Lead.

RESPONSIBILITIES
 

• Help the TPRM team to implement the existing TPRM process and historical data in the GRC tool during Q1 & Q2 2024.
• Conduct formal end to end Information Security Risk Assessments (review of questionnaires, third party security audit reports and evidence, onsite assessments, etc.)
• Document risk assessment in a formal report, including any identified deficiencies in third party’s Information Security program.
• Work together with the rest of the TPRM team and stakeholders to review the assessment and escalate any issues. Work with operating units, Cybersecurity advisors, BISO and partners to get additional information and to properly vet any issues prior to finalizing the report.
• Review and analyze evidence supporting deficiency remediation efforts prior to closure.
• Contribute to building remediation plans and non-compliance acceptance with the business when CyberSecurity standards compliance cannot be met.
• Partner with other CyberSecurity teams, Cybersecurity advisors, BISO, Operating units and IT, to ensure that risks are clearly articulated for technical & non-technical audiences,
• Contribute to Third Party Risk assessment process improvement, including procedures, project deliverables and reporting initiatives
• Build and maintain positive relationships with management, team members, and stakeholders across the company using effective written and oral communication practices.

PROFILE AND SKILLS

• Academic and/or Professional experience in Audit/ IT and/or Information Security experience
• As a PLUS : Good knowledge of Information Security Risk Analysis domain, including formal risk assessments on industry standards and frameworks such as ISO 27005 and related methods.
• Strong oral and written communication skills, you speak fluent English

• Good analytical and problem-solving skills with the ability to analyze data, identify opportunities, determine solutions, identify and obtain needed resources for completion in good autonomy.
• Ability to accurately communicate complex Information Security Cyber  Security issues to non-technical audience.

Find out more about CMA CGM Group's Sustainable Development approach and net zero carbon emissions by 2050 ambition.
Find out more about CMA CGM exceptional work environment.
87.4% of our interns and apprentices recommend CMA CGM Group for a professional experience!

Watch their video testimonals!