Job description
">
sr. Account cyber lead (acl) & cyber incident manager
this is a key position that oversees the strategic development and implementation of information security initiatives across our organization.
the successful candidate will have experience in managing multiple projects, developing and implementing policies, procedures, and standards to ensure the confidentiality, integrity, and availability of sensitive data.
they will be responsible for conducting regular risk assessments, ensuring compliance with relevant laws and regulations, and providing guidance to employees on best practices related to cybersecurity.
additional responsibilities include:
* conducting cyber risk assessments for all sows and use the mandated group cybersecurity risk template, periodically sharing these with group cybersecurity.
* ensuring that the group cybersecurity steppingstone connectivity model is employed when connecting into the client's environments.
* ensuring that all resources, including any contractors, receive additional security awareness training focusing on secure data handling processes, including how they manage and handle access credentials for any utilized source code repositories.
* ensuring all contractor resources, as part of their offboarding, are specifically reminded of their security obligations to not retain any client-related data and/or source code.
* ensuring that an nda is produced and all resources accessing the client environments sign it and that the acl maintains a centralized record of all signatories.
* in conjunction with the clients, creating a security raci to ensure that all parties have a clear understanding of who is responsible and accountable for all security controls.
* maintaining a risk register (reviewed on a regular basis with the client) to document and track identified security risks, gaps, and mitigations where the client is the risk-owner.
* responsible for managing security incident response processes, including detection, analysis, containment, eradication, and recovery, while ensuring timely communication with stakeholders and continuous improvement of incident handling procedures.
required skills and qualifications
skills and qualifications
to be successful in this role, you will need to possess the following skills and qualifications:
* 5-7 years of experience in similar roles with overall 10+ years it experience.
* a degree in information technology, computer science, engineering, or a related field.
* proven track record and experience in cyber security governance, risk, and compliance (grc).
* certification or training in cybersecurity, viz: lead auditor, iso 27001, iso 27701, iso 42001, cisa/cism/crisc etc.
* deep understanding and knowledge of nist / iso27001 framework.
* familiarity with all statutory, regulatory regulations, and data privacy requirements.
* general technical knowledge and/or expertise in multiple areas of information systems technology, infrastructure, cloud, and gen ai.
* knowledge of industry best practices in cybersecurity.
* demonstrated leadership and team development skills.
* strong written, verbal communication, and presentation skills ability to speak at group events, and to interface with senior executives/customers.
* self-awareness – recognizing and understanding your own emotions and their impact on thoughts and behavior.
* self-regulation – managing emotions effectively, controlling impulses, and adapting to changing circumstances.
* motivation – having internal drive, resilience, and a strong sense of purpose beyond external rewards.
* empathy – understanding and considering others' emotions, perspectives, and needs.
benefits
work environment
as a member of our team, you can expect to work in a collaborative environment that embodies honesty, boldness, trust, freedom, team spirit, modesty, and fun.
our organization provides a career foundation that enables you to build your professional skills and grow both horizontally and vertically.
capgemini mexico has developed its own way of working, which focuses on giving each new hire a unique experience through our recruitment process and onboarding program.
headquartered in paris, france, capgemini has a presence of over 340 thousand professionals worldwide, distributed among 3 sites located in mexico city, monterrey, and aguascalientes, offering a multicultural workplace environment.
furthermore, we offer a competitive compensation package and benefits.
others
why this job?
working in this role allows you to make a meaningful contribution to our organization's success by protecting our customers' data and assets from cyber threats.
it also presents opportunities to develop your skills and gain valuable experience in cybersecurity, leadership, and teamwork.
by joining our team, you will be part of a dynamic and diverse community that values collaboration, innovation, and mutual respect.
ultimately, this job offers the chance to grow professionally and personally while making a positive impact in the world of cybersecurity.
],