Cybersecurity Head of Governance & Performance

Led by Rodolphe Saadé, the CMA CGM Group, a global leader in shipping and logistics, serves more than 420 ports around the world on five continents. With its subsidiary CEVA Logistics, a world leader in logistics, and its air freight division CMA CGM AIR CARGO, the CMA CGM Group is continually innovating to offer its customers a complete and increasingly efficient range of new shipping, land, air and logistics solutions.

Committed to the energy transition in shipping, and a pioneer in the use of alternative fuels, the CMA CGM Group has set a target to become Net Zero Carbon by 2050. Through the CMA CGM Foundation, the Group acts in humanitarian crises that require an emergency response by mobilizing the Group’s shipping and logistics expertise to bring humanitarian supplies around the world.

Present in 160 countries through its network of more than 400 offices and 750 warehouses, the Group employs more than 155,000 people worldwide, including 4,000 in Marseilles where its head office is located.

THE ROLE :

Within the CMA CGM Cybersecurity Group Department, the new Cybersecurity Governance and Performance Department ensures CMA CGM digital resilience by defining security maturity objectives, establishing robust cybersecurity frameworks and checking the appropriate implementation of the security objectives. In very close collaboration with the Cyber security architect and department in charge of the run of the cyber security activities, its mission is to implement:

• Define security maturity objectives for the Group based on CISO vision and risks
• Translate objectives in actionable & practical documentation corpus
• Develop a common and light Cyber security control catalogue for Cyber Architects
• Ensure Governance policies are applicable and applied via means of compliance and evidence associated to each security control
• Adapt policies based on continuous feedback from cyber architects and secops teams
• Oversight, guidance & challenge to the cybersecurity & IT run activities
• Monitor and ensure closing/remediation of all cyber findings and vulnerabilities
• Report to CISO

By fostering collaboration and accountability, it drives continuous improvement and adapts to emerging threats. This department empowers the CMA CGM Cybersecurity department to achieve its strategic objectives while maintaining a strong, secure, and compliant operational environment.

Step into a pivotal leadership role where you will shape the future of the organization’s cybersecurity strategy and governance. As Head of Governance & Performance, you will lead a dynamic team to:

• Define and deliver the cybersecurity governance for the CMA -CGM group
• Define and develop the cybersecurity governance framework, tools, process
• Collaborate with others department to ensure proper alignment of security objectives with constraints from the field
• Define the methodology, identify and maintain the ‘crown jewels’ list of assets to secure in priority
• Develop and implement innovative ad hoc controls to guarantee program efficiency and resilience
• Establish trustworthy and impactful KPIs in partnership with service lines, ensuring transparency and measurable success
• Create strategic and tactical dashboards that empower leadership to make data-driven decisions and steer cybersecurity initiatives
• Oversee the delivery of Cybersecurity Service Lines, ensuring excellence and alignment with organizational priorities
• Monitor and drive remediation plans for findings, including audit-identified gaps, ensuring a proactive and secure posture
• Lead the team

This role offers the unique opportunity to drive innovation, accountability, and excellence of Cybersecurity department. If you’re ready to tackle complex challenges, inspire a high-performing team, and shape the future of cybersecurity, this is your moment to lead.

• Leadership & department management (budget, Human ressources…)
• Previous management of large Cyber security operations & cyber architects teams
• Provenances experience in Governance
• High capacity to analyze qualitative and quantitative data on various topics
• Good expertise with norms and international frameworks
• Strong capacity for listening and communication skills with all types of interlocutors
• Expertise in IT, AI & OT
• Strong management skills and transformation ability
• Knowledge of security/authorization model
• Auditors, regulators & business stakeholders
• Ability to collaborate and build relationships with Cybersecurity team member but also with relevant CMA CGM stakeholders
• Good communication skills, both written and oral
• Well organized, with good attention to detail
• Fluent in English
• Fluent in French
• Ability to work in a multicultural and cross-regional team (Europe/Canada/Asia/India)

• Knowledge of Cybersecurity & IAM concepts & tools
• Basic concepts on Cybersecurity solutions
• Proficient skills in PowerPoint, Word, Excel, AI, data management
• Experience in dashboarding & observability tool

• Full governance process, methods
• High level dashboards for management and tactical dashboards for service line directors
• Audit findings and remediation plan follow-up
• Reporting

Please ensure you are familiar with the CMA CGM Corporate Internal Mobility guidelines