Information Security Officer

Company Description

CGG (www.cgg.com) is a global technology and HPC leader that provides data, products, services and solutions in Earth science, data science, sensing and monitoring. Our unique portfolio supports our clients in efficiently and responsibly solving complex digital, energy transition, natural resource, environmental, and infrastructure challenges for a more sustainable future. 

Our expertise, specialized HPC and digital technologies support advanced and secure cloud-based workflows, expert geoscience data transformation and AI, machine learning and data science services. Today, our HPC supports over 700 users with 300 petaflops of compute power.

Job Description

We are looking for an experienced and highly talented Information Security Officer to join our InfoSec team! 

Reporting to the Chief Information Security Officer, you will play a vital role to strengthen our Information Security posture by providing governance, risk management, compliance and auditing capabilities.

As an Information Security Officer you will collaborate with a global team, with a focus on risk management, and the responsibility of providing assurance to our executive leadership, board, customers and other stakeholders that we are ‘secure enough’.

This role would suit someone with an information security background looking to develop their career in a global technology company or with experience of governance, risk and compliance wanting to move into information security.

Principal Accountabilities

• Participate in the management and evolution of the Information Security framework
• Develop policies and processes that match InfoSec objectives
• Provide coordination and guidance to the InfoSec regional community (RISOs)
• Oversee the Group’s Information Security compliance against external and internal Information Security requirements, ensuring gaps are communicated.
• Manage and deliver general InfoSec training and targeted specific topic training offerings
• Maintain our Incident Response Plan and run regular table-top exercises with stakeholders to test and improve the plan
• Participate in cyber security risk analyses of business lines
• Maintain the Information Security Incident Response Plan (InfoSec IRP) including the development of relevant run books
• Advise IT groups on InfoSec best practices and process implementations
• Liaise with the relevant stakeholders on information security aspects of projects
• Participate in the investigation and analysis of Information Security incidents
• Participate in Information Security internal and external audits

Qualifications

• High level knowledge of IT ‘building blocks’ and how they relate to information security
• Knowledge of Information Security frameworks (ideally NIST) and their application
• Experience in the creation and maintenance of policies and associated documentation
• Experience of developing and delivering training and e-learning
• Good understanding of the principles of information security (CIA, Critical Assets, threats, vulnerabilities, exposure, risk, controls etc.)
• Experience of the vulnerability management process and analysis, interpretation, and prioritization of the results

Additional Information

Why work at CGG?

• Competitive salary commensurate with experience
• Highly attractive bonus scheme
• Initial 22 days annual leave with future increases, complemented by a flexible buying and selling holiday program
• Company pension with generous employer contribution
• Wellbeing Unmind app – puts you in control of your mental health
• A flexible benefits platform with numerous discount schemes - gym membership, restaurants, cinema tickets, and much more!
• Regular social club events, spontaneous reward events throughout the year
• Cycle purchase scheme
• Flexible Private Medical & Dental care programmes

We are Flexible

• Flexible Working – through our hybrid working scheme, we offer a flexible blend of home and office working
• Bank Holiday Swap - our holiday swap program allows you to change it for another day of your choice!
• Relaxed dress code policy

Learning and Development

At CGG, you will have the space to grow at the pace of your passion and explore the opportunities available to those who dare and deliver.

Our culture of learning and complementary approach to supported or self-guided career development, enables the design of tailored courses to suit specific needs our employees to aid personal growth in areas related to technical, commercial and personal skills, via an extensive suite of CGG developed courses, managed through our own Learning Hub.

We Care about the Environment

We encourage and actively support a strong sense of community, through volunteering and various company initiatives, as well as a strong company commitment to protecting our environment through sustainable solutions, energy saving and waste reduction enterprises.

We see things differently. Diversity fuels our innovation, we value the unique ways in which we differ, and we are committed to equal employment opportunities for all professionals.