Information Security Officer (UK, US or France)
Flexible, United Kingdom
Applications have closed
CGG
CGG provides data, products and services in Earth science, data science, sensing and monitoring for a wide range of industries.Company Description
CGG (www.cgg.com) is a global geoscience technology leader. Employing around 3,700 people worldwide, CGG provides a comprehensive range of data, products, services and solutions that support our clients to achieve their business and transition goals. We combine human ingenuity and new technology to understand and solve the world’s natural resource, environmental and infrastructure challenges. Our unique perspective uncovers new ways for our clients to be more efficient and responsible, for a more sustainable future.
Job Description
This role has a flexible location. You can either be based in the UK, the US or France.
CGG is seeking an Information Security Officer to join its Information Security team reporting to the Chief Information Security Officer. The team has a global remit with a focus on risk management, and the responsibility of providing assurance to our executive leadership, board, customers and other stakeholders that we are ‘secure enough’.
The successful candidate will join the team to strengthen our Information Security posture by providing governance, risk management, compliance and auditing capabilities.
This role would suit someone with an information security background looking to develop their career in a global technology company or with experience of governance, risk and compliance wanting to move into information security.
Principal Accountabilities
- Participate in the management and evolution of the Information Security framework
- Develop policies and processes that match InfoSec objectives
- Provide coordination and guidance to the InfoSec regional community (RISOs)
- Oversee the Group’s Information Security compliance against external and internal Information Security requirements, ensuring gaps are communicated.
- Mange and deliver general InfoSec training and targeted specific topic training offerings
- Maintain our Incident Response Plan and run regular table-top exercises with stakeholders to test and improve the plan
- Participate in cyber security risk analyses of business lines
- Maintain the Information Security Incident Response Plan (InfoSec IRP) including the development of relevant run books
- Advise IT groups on InfoSec best practices and process implementations
- Liaise with the relevant stakeholders on information security aspects of projects
- Participate in the investigation and analysis of Information Security incidents
- Participate in Information Security internal and external audits
Qualifications
- High level knowledge of IT ‘building blocks’ and how they relate to information security
- Knowledge of Information Security frameworks (ideally NIST) and their application
- Experience in the creation and maintenance of policies and associated documentation
- Experience of developing and delivering training and e-learning
- Good understanding of the principles of information security (CIA, Critical Assets, threats, vulnerabilities, exposure, risk, controls etc.)
- Experience of the vulnerability management process and analysis, interpretation, and prioritization of the results
Additional Information
Learning and Development
Our culture of learning and complementary approach to supported or self-guided career development, enables the design of tailored courses to suit specific needs of each individual to aid personal growth in areas related to technical, commercial and personal skills, via an extensive suite of CGG developed courses, managed through our own CGG Learning hub.
We have great Benefits
As well as a competitive salary and bonus scheme, CGG has flexible holiday allowance, pension scheme, private healthcare & dental and financial wellbeing assistance, among many other local discounts and incentives.
Join us and share your talent and imagination to ‘see things differently’!
We see things differently. Diversity fuels our innovation, we value the unique ways in which we differ, and we are committed to equal employment opportunities for all professionals.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Audits CIA Compliance Governance Incident response NIST Risk management Vulnerabilities Vulnerability management
Perks/benefits: Career development Competitive pay Salary bonus Startup environment
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Ethical hacker / Pentester H/F jobs
- Open Information Security Specialist jobs
- Open Manager Pentest H/F jobs
- Open Senior Cyber Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Cyber Security Specialist jobs
- Open Product Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Principal Security Engineer jobs
- Open Staff Security Engineer jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open IT Security Analyst jobs
- Open Consultant SOC / CERT H/F jobs
- Open Cybersecurity Consultant jobs
- Open Security Specialist jobs
- Open Senior Information Security Engineer jobs
- Open Cybersecurity Specialist jobs
- Open Senior Penetration Tester jobs
- Open Security Researcher jobs
- Open Sr. Security Engineer jobs
- Open Senior Security Architect jobs
- Open Security Operations Analyst jobs
- Open Clearance-related jobs
- Open ISO 27001-related jobs
- Open Windows-related jobs
- Open Application security-related jobs
- Open Network security-related jobs
- Open Agile-related jobs
- Open Pentesting-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open SaaS-related jobs
- Open Analytics-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open IDS-related jobs
- Open DevOps-related jobs
- Open Malware-related jobs
- Open Security Clearance-related jobs
- Open EDR-related jobs
- Open Kubernetes-related jobs
- Open CEH-related jobs
- Open IPS-related jobs