Information Security GRC Manager

At Airties we are on a mission to empower broadband operators to deliver a better-connected home experience for their subscribers. We have an exciting story to tell, and we want you to help us tell it.Airties offers broadband operators with advanced Wi-Fi solutions and services to allow them bring an improved user experience for their subscribers. The Airties portfolio includes Smart Wi-Fi software, a cloud-based experience management platform with its companion app and data engine as well as expert engineering and testing services.Airties is the most widely deployed provider of Smart Wi-Fi solutions to network service providers around the globe and our technologies are driving a better-connected user experience in more than 35 million homes worldwide.IntroductionThe Information Security GRC Manager is pivotal in overseeing company-wide information security activities. This role ensures the effectiveness of Information Security Management System (ISMS) activities, governs information security risk processes, and leads compliance efforts. Additionally, the Information Security GRC Manager acts as the primary liaison for information security audits and providing leadership in the development and management of information security policies and procedures.Location: Paris - FranceWhat you will do:Information Security Management System (ISMS) activities and lead the ISMS teamGovern information security risk processes and activities throughout the organizationDevelop and maintain policies, procedures, and documentation related to information security governance, risk management, and complianceCommunicate regularly with senior management to report on the status of information security initiatives and compliance effortsManage and develop information security initiatives, ensuring alignment with organizational goals and industry standardsCollaborate with cross-functional teams to ensure alignment of information security practices with business objectivesProvide guidance and support to stakeholders on information security best practices and compliance requirementsDevelop and implement initiatives to increase security awareness among employees, providing training, resources, and ongoing communication to promote a culture of vigilance and responsibility in safeguarding sensitive informationAct as the main focal point for information security audits from external parties and certification authorities ensuring compliance with industry standards and regulatory requirementsConduct internal security audits to assess the effectiveness of security controls and identify areas for improvementStay updated on emerging threats, vulnerabilities, and regulatory changes to continuously improve the organization's security postureEnsure product security and product compliancyProvide support on compliance with data privacy regulations (e.g., GDPR) and contractual commitmentsLead coordinator for security incident responses (including regarding streamlined external communication)What you should ideally bring:Bachelor's degree in Information Security, Computer Science, or related field; Master's degree preferredAt least 8 years of experienceProfessional certifications such as CISSP, CISM, CRISC, or CISA are highly desirableExtensive experience in information security governance, risk management, and compliancePractical experience with common cybersecurity frameworks such as ISO 27001/2/3, NIST, CISStrong understanding of IT infrastructure, software development processes, and product architectureProficiency in conducting risk assessments and developing risk mitigation strategiesExperience in developing and implementing security standards, procedures, and controlsFamiliarity with GRC tools and processes for automating and monitoring information security controlsExcellent communication and interpersonal skills, with the ability to collaborate effectively across departments and technical teamsProven leadership abilities with the capacity to motivate and mentor team membersAbility to prioritize and manage multiple tasks in a dynamic, fast-paced environment, while adhering to deadlines and regulatory requirementsAirties has a zero tolerance to discrimination policy. In this regard, during the course of the evaluation of your job application and during all your employment relation, if any, all discriminatory factors such as race, sex, sexual orientation, social gender definitions/roles, colour, national or social background, ethnicity, religion, age, disablement, political opinion or any status that is protected under law shall be totally disregarded.*By applying to this job opening, you agree, acknowledge and consent to the transfer of your personal data by Airties either to or from Turkey, as the case may be; in particular to its affiliated companies.*By applying to this job opening, you agree, acknowledge and consent to the transfer of your personal data by Airties to its headquarters established in France.