Security Manager

**ABOUT**:
In less than a decade, ManoMano has become a key player in the home improvement and renovation sector.

Founded in France in 2013 by two French DIY enthusiasts amazed at the lack of digitalization in the market, ManoMano is now present in 6 European countries (France, Belgium, Spain, Italy, Germany, UK), federates over 5,000 sellers and now offers the widest range of DIY and gardening products online (+19 million products references).

Motivated by the prospect of improving the living environment of their customers and convinced of the importance of the home market for sustainable consumption habits, the ManoMano teams want to help write a new page in their industry, which is struggling to reform itself. ManoMano brings to a highly technical world the power of its sector expertise, combined with that of data and digital in all its dimensions, to offer our customers easy access to innovative advice, products and services 100% online.

The ambition of the Founders and, above all, of Manas & Manos? To accompany this sector transformation with a strong culture of boldness, in an ingenious and frugal organization that places people and teams at the heart of the company's development.

**CONTEXT**:
The Security Manager is responsible for ensuring the security of our organization with a proactive and innovative approach. The objective is to develop and execute comprehensive cybersecurity strategies to protect against evolving threats and risks.

**MISSIONS**:

- **Team Leadership**:

- Manage and lead a team of cybersecurity experts, providing guidance, mentorship, and support to achieve organizational goals.
- **Cybersecurity Strategy**:

- Develop and implement a comprehensive cybersecurity strategy to protect the organization against evolving threats and risks.
- **Compliance Management**:

- Lead security compliance audits (e.g., PCI-DSS, ISO27001) to ensure adherence to industry regulations and standards.
- **Policy and Standards Development**:

- Define and implement security policies, standards, and best practices to maintain the highest level of security and compliance.
- **Systems and Infrastructure Security**:

- Oversee the design and implementation of secure systems and infrastructure, including cloud-based solutions, ensuring resilience, availability, and scalability.
- **Vulnerability Management**:

- Identify, assess, and remediate vulnerabilities across all systems, communicating findings and solutions to both technical and non-technical audiences.
- **Penetration Testing and Security Assessments**:

- **Threat Modeling and Application Security**:

- **Security Culture and Training**:

- Foster a strong security culture by creating awareness and training programs, and organizing internal and external conferences and workshops.
- **Collaboration**:

- **Incident Response**:

- **Active Defense**:

- Develop and integrate security tools and solutions to automate and enhance detection and remediation.

**PROFILE**:

- **Education**:

- Master's degree in Computer Science, Engineering, Information Technology, or a related field.
- **Experience**:

- Demonstrated experience in a hands-on cybersecurity leadership position, ideally as a CISO or in a similar role
- Proven track record of delivering effective business and technical security solutions, including processes, tools, and project management within high-performing teams.
- A strong passion for staying current with the latest cybersecurity trends and emerging threats is essential.
- Proven experience in designing and implementing security architectures for cloud-based and/or on-premises systems.
- Expertise in cloud security platforms and tools, including knowledge of compliance and regulatory requirements.
- **Skills**:

- Exceptional leadership and communication abilities, with a talent for motivating and guiding teams.
- Outstanding analytical skills, capable of managing multiple projects under tight deadlines, and thriving in a fast-paced, high-pressure environment to achieve overarching goals.
- Skilled in establishing trusted relationships with stakeholders at all levels and fostering effective collaboration with other teams.
- Excellent communication skills (oral and written) with both technical and non-technical audiences.