Cybersecurity Governance Analyst

Permanent Regular

Pluxee is a global player in employee benefits and engagement that operates in 31 countries. Pluxee helps companies attract, engage, and retain talent thanks to a broad range of solutions across Meal & Food, Wellbeing, Lifestyle, Reward & Recognition, and Public Benefits. Powered by leading technology and more than 5,000 engaged team members, Pluxee acts as a trusted partner within a highly interconnected B2B2C ecosystem made up of more than 500,000 clients, 36 million consumers and 1.7 million merchants. Conducting its business as a trusted partner for more than 45 years, Pluxee is committed to creating a positive impact on all its stakeholders, from driving business to local communities, to supporting wellbeing at work for employees while protecting the planet.

The Cybersecurity Governance Analyst is responsible for supporting the implementation, monitoring and continuous improvement of cybersecurity governance frameworks. You will oversee the developments of the policies, standards, procedures and guidelines of the cybersecurity governance frameworks. You will ensure compliance with IT security standards, regulations and best practices and works closely with the company\'s technical teams and stakeholders.

• Development and management of cybersecurity governance:
  • Develop and update security policies, procedures and standards.
  • Ensure alignment with standards (ISO 27001, NIST, GDPR, LGPD, DORA, etc.) and applicable regulatory frameworks.
  • Monitor performance indicators related to cybersecurity (KPI/KRI).
• Compliance and risk management:
  • Contribute to carrying out risk analysis.
  • Follow action plans related to internal/external audits.
  • Collaborate with legal teams to ensure regulatory compliance.
• Awareness and training:
  • Participate in the implementation of employee awareness and training programs.
• Reporting and communication:
  • Prepare periodic reports on security status and ongoing projects.
  • Participate in the improvement of the global cybersecurity dashboard.

• Bac +5 in Cybersecurity or IT.
• +2 years work experience in cybersecurity governance or risk management.
• Good knowledge of cybersecurity governance frameworks (ISO 27001, etc.).
• Understanding of risk assessment methodologies (EBIOS, ISO27005, etc.).
• Knowledge of regulations: DORA, RGPD, PCI-DSS, etc.
• Good general knowledge of IT and IT management.
• Analytical and synthesis skills.
• Good communication skills with the abilty to explain technical concepts to non-technical stakeholders.
• Ability to work collaboratively with multidisciplinary teams.
• Sense of confidentiality.
• Proficient in English with excellent writing skills and fluency in French.

Issy-lès-Moulineaux

1. A meaningful job: Be the change! Help us build the future of employee benefits by bringing to life sustainable and personalized experiences and contribute to make a real impact on millions of lives. Our business model delivers not just for individuals but their communities too, by supporting local businesses and economies.
2. A great culture: People matter - a lot! Be part of a multicultural team that moves as one in a fast paced and innovative environment. We respect and care authentically about our people, we embrace wellbeing and work-life balance, new ideas and we have a lot of fun!
3. An empowering environment: Be yourself! At Pluxee we proudly embrace diversity and value the uniqueness of our talents, fostering an inclusive work place where all abilities are celebrated, and equal learning and growing opportunities are a given.