Software Security Manager

Social network you want to login/join with:

Ingenico is the global leader in payments acceptance solutions. As the trusted technology partner for merchants, banks, acquirers, ISVs, payment aggregators and fintech customers, our world-class terminals, solutions and services enable the global ecosystem of payments acceptance. With 40 years of experience, innovation is integral to Ingenico’s approach and culture, inspiring our large and diverse community of experts who anticipate and help shape the evolution of commerce worldwide. At Ingenico, trust and sustainability are at the heart of everything we do.

This role can be based in Suresnes or Valence.

You will be part of the Products & Solutions Security team, a multicultural team working on defining and applying the security strategy required to bring the best level of security to Ingenico products and solutions.

As Software Security Manager, you will oversee the security of our software development lifecycle, ensuring all software released by the company meets the highest security standards. This role involves collaborating with various departments to implement security best practices, conduct security assessments, and manage security incidents related to software products.

You will collaborate closely with our software development teams involved in cloud solutions development, embedded systems development, and with colleagues responsible for certifications of Ingenico products and solutions. You will also participate in Corporate Security workgroups to define policies and procedures applicable across the company.

Your responsibilities include managing and preparing the growing Software Security team to address new cybersecurity challenges.

• Lead a team of Security analysts, developing their skills to meet Ingenico customer requirements in the security of information systems in cloud, on-premises, and embedded software environments.
• Define the software security strategy aligned with company goals and regulatory requirements, and collaborate with development & operation teams to establish methods, tools, and policies supporting the security model, including Security by Design, Secure Software Development Lifecycle, Vulnerability Management, and security awareness training.
• Establish Risk Management methodologies and processes, conducting regular security risk assessments, asset directory creation, threat and risk identification, and treatment.
• Ensure policies are in place and evaluate vulnerabilities through internal audits and penetration tests.
• Lead and coordinate responses to software security incidents, including root cause analysis and corrective actions.
• Ensure compliance with security standards such as PCI DSS, OWASP, ISO 27001, NIST, and support security audits.
• Provide regular reports on security initiatives, vulnerabilities, and incidents to senior management and stakeholders.

This list is not exhaustive; additional duties may be assigned as necessary.

You hold a Master’s degree or equivalent in Computer Science, Information Security, or a related field. Advanced certifications (e.g., CISSP, CSSLP, CEH) are a plus. You have at least 5 years of professional experience in software security. Proficiency in both French and English is required.

• Experience with software audits and security
• Knowledge of security solutions for Cloud-based systems
• Familiarity with PCI standards, ISO 27001, SOC standards
• Strong communication skills to convey complex security concepts effectively to technical and non-technical stakeholders