Business Information Security Officer

Led by Rodolphe Saadé, the CMA CGM Group, a global leader in shipping and logistics, serves more than 420 ports around the world on five continents. With its subsidiary CEVA Logistics, a world leader in logistics, and its air freight division CMA CGM AIR CARGO, the CMA CGM Group is continually innovating to offer its customers a complete and increasingly efficient range of new shipping, land, air and logistics solutions.

Committed to the energy transition in shipping, and a pioneer in the use of alternative fuels, the CMA CGM Group has set a target to become Net Zero Carbon by 2050.
Through the CMA CGM Foundation, the Group acts in humanitarian crises that require an emergency response by mobilizing the Group’s shipping and logistics expertise to bring humanitarian supplies around the world.

Present in 160 countries through its network of more than 400 offices and 750 warehouses, the Group employs more than 155,000 people worldwide, including 4,000 in Marseilles where its head office is located.

ROLE   
 
The Business Information Security Officer (BISO) acts as the primary link between a Line of Business and the CMA CGM Group Cybersecurity function. The BISO ensures business plans align with cybersecurity requirements, representing both cybersecurity interests to the business and business needs within cybersecurity.
This role is pivotal for bridging business and cybersecurity, ensuring strategic alignment, risk management, and fostering a culture of security awareness across the organization.

WHAT ARE YOU GOING TO DO?

Business Engagement
•    Build strong relationships with business stakeholders
•    Provide clear cybersecurity overviews and insights
•    Support leadership with business-specific cybersecurity insights
•    Promote awareness of new regulations and compliance requirements
•    Collaborate with regional CISOs for local needs

Asset and Risk Management
•    Identify and maintain lists of critical business assets
•    Provide clear business strategy, overviews and insight to Cybersecurity
•    Share strategic risks and opportunities with executives
•    Support risk-based decision-making for programs and budgets

Project and Incident Management
•    Ensure cybersecurity is properly integrated into business projects
•    Escalate and help resolve issues
•    Assist with security questionnaires and contract security clauses
•    Liaise between CERT and Business during incidents
•    Drive adoption of new security capabilities

Awareness and Education
•    Promote security awareness and training
•    Identify high-risk populations and report progress
•    Use relevant security news to reinforce awareness
•    Attend external events for industry insights

Collaboration and Communication
•    Always push for ‘simplify & efficiency approach’ towards business
•    Work with other BISOs to share best practices
•    Act as escalation point between Business and Cybersecurity
•    Foster a strong cybersecurity culture

WHO ARE WE LOOKING FOR?

•    Bachelor or Master in IT, Computer Science, or related field
•    Technical/business dual background and security certifications are assets
•    Broad cybersecurity knowledge and regulatory frameworks familiarity
•    Proven experience in information security
•    Strong communication, risk management, and business acumen
•    Customer-oriented, interpersonal, and change management skills
•    Bilingual (English and French) is an asset

Come along on CMA CGM’s adventure !