Senior Security & Compliance Project Manager

You will need to login before you can apply for a job.

As a Senior Security & Compliance Project Manager, you will drive key security and compliance initiatives across Criteo. Your role is transversal and strategic: identifying and qualifying risks, defining priorities, aligning stakeholders, and ensuring consistent execution from vision to delivery. Topics you may own include writing standards and policies, risk management, third-party risk management, ISO27001, SOC2, SOX, and other team initiatives.

• Lead strategic security GRC programs and manage risks.
• Define and structure security compliance projects (ISO27001, SOC2, NIST, internal control plans, etc.).
• Turn strategy into actionable roadmaps and clear milestones.
• Lead end-to-end project delivery across multiple teams (Security, Engineering, Infrastructure, Physical Sites, Legal, etc.).
• Facilitate and energize collaborative workshops and steering committees.
• Be a trusted partner for technical teams; bridge the gap between compliance and engineering with security expertise.
• Coordinate audit activities, from preparation to closure (internal and external).
• Review technical designs to ensure alignment with security best practices.
• Drive the security audit lifecycle: plan and lead major security audits and assessments (SOC2, ISO27001, NIST), drive evidence collection, and orchestrate remediation of findings.
• Contribute to transversal team missions and participate in SOX legal audits, third-party risk management, client security questionnaires, and due diligence.
• Support the creation of clear, structured, and actionable security documentation (policies, standards).
• Write security GRC documentation (information security policies, technical security standards).

• Master's degree in Information Security, Computer Science, or a related field.
• Certifications in security governance or compliance frameworks (e.g., ISO27001 Lead Auditor/Implementer, CISA, CISSP, or similar) are highly valued.
• Commitment to continuous professional development in risk management, audit methodologies, and regulatory compliance.

• Experience in security GRC, compliance, or risk management.
• Experience working with engineering teams and a solid understanding of authentication, encryption, access control, threat modeling, and related concepts; ability to talk to engineers.
• Proven ability to structure and lead complex, multi-team projects in a fast-paced, agile environment.

• Autonomous, resourceful doer who focuses on impact and can handle ambiguity.
• Strong communicator who simplifies complexity, aligns stakeholders, and keeps projects moving.
• Solution-oriented and action-driven; prioritizes implementing and documenting effective solutions; automates where possible.
• Fluent English; French is a plus but not mandatory.

We acknowledge that many candidates may not meet every single role requirement listed above. If your experience looks a little different but you believe you can still bring value to the role, we’d love to see your application!

Criteo is a leader in commerce media, helping brands, agencies, and publishers create meaningful consumer connections through AI-powered advertising solutions. We’re shaping a more open and sustainable digital future for advertising.

At Criteo, our culture is diverse and collaborative. With offices around the world and a global team of 3,600, we work in an open, impactful, and forward-thinking environment.

We foster a workplace where everyone is valued, and employment decisions are based solely on skills, qualifications, and business needs—never on non-job-related factors or legally protected characteristics.

Ways of working: a hybrid model blending home and in-office experiences; Grow with us: learning, mentorship, and career development programs; Your wellbeing matters: health benefits and wellness support; A team that cares: diverse, inclusive, globally connected; Fair pay and perks: competitive salary with performance-based rewards and potential equity depending on role and level. Additional benefits may vary by country.

Visit this company’s hub to learn about their values, culture, and latest jobs.