Information Security Officer

Information Security Officer

CODIX is an International Software company, headquartered in France, providing iMX, the unique all-in-one innovative solution for Banks, Telecoms, Utilities, Insurance companies, etc.

CODIX is a dynamic company with a rapidly expanding client portfolio (BNP PARIBAS, SOCIETE GENERALE, KBC, BARCLAYS, ORANGE, BANCO SANTANDER, SILICON VALLEY BANK, BOUYGUES TELECOM, EUROFACTOR, EULER HERMES, COFACE, ATRADIUS, etc.) and worldwide presence with its 16 subsidiaries on 5 continents.

IDENTIFY & DESIGN
• Identify the major security issues and risks within its scope
• Coordinate global Security ISO27001:2022 implementation on operational level:
- maintain standards, procedures and guidelines to promote the security and uninterrupted operation of systems.
- Contribute to the translation of security policies into operational security standards, with relevant Stakeholders
- Decline and maintain the IS security policy in collaboration with stakeholders

TASKS
• Provide implementation support by providing technical, methodological and organizational assistance as well as security tools and services, to stakeholders
• Assess the level of security with relevant stakeholders, especially through Security Risk assessment management
• Participate in the choice for Security KPIs, under CODIX ISMS scope
• Contribute to responding to requests from prospects and customers of the organization on security aspects (particularly in the context of calls for tenders)
• Organize crisis management to act and deal with the cybersecurity crisis
• Ensure that projects are designed and carried out in a secure manner
• Ensure an advisory role with its hierarchy and the businesses within its scope
• Represent the organization in relations with regulatory authorities
• Disseminate an ISS culture to users
• Report regularly to the hierarchy on the current level of coverage of IS security risks
• Participate in the choice of publishers and IS service providers from a security perspective
• Monitor new threats and take them into account when defining security architectures
• Maintain relationships with suppliers to ensure a technological watch on innovations and security tools in order to integrate them into security architectures if necessary

• Knowledge of ISO 2700x governance, norms and standards
• Mastery of the information system, the urbanization and the architecture of the IS
• Ability to build the organization's cybersecurity strategy
• Ability to understand cybersecurity threats
• Knowledge of information system and architecture principles
• Risk management, cybersecurity policy and ISMS
• Cyber defense knowledge
• Post-mortem analysis (forensic) knowledge
• Knowledge of market security solutions

• Sense of general interest
• Ability to
- influence
- report back to management
- work cross-functionally within the organization
- withstand pressure
- appropriate business issues
• Capacity for restitution and popularization for non-technical audiences
• Drafting of reports adapted to different levels of interlocutors
• Team work
• Ethical sense

Competitive remuneration package and additional benefits
• Unique career opportunities in a rapidly growing international company
• Additional Health Insurance including dental care package
• Annual Medical Check
• Reimbursement of costs for optical eye wear
• On-boarding and further trainings
• Language courses (English, French and Bulgarian for foreigners)
• Continuous investment into your professional development
• Transportation card/ Parking place
• Sport cards and activities
• Corporate discounts
• A key person benefit program
• Loyalty program
• Friendly work environment with international standards
• Possibility for Hybrid work after the trial period

Send your CV by clicking HERE. Apply now!

We are eager to meet you!