CISO (F/N/M)

We're Adevinta, a global leader in digital marketplaces. Our household name brands, including Marktplaats in the Netherlands, mobile.de in Germany and leboncoin in France, reach hundreds of millions of people every month.

We're all about matchmaking, and our sites help people find whatever they're looking for in their local communities - whether it's a car, an apartment, a sofa or a new job. Every connection made or item found makes a difference by creating a world where people share more and waste less.

Our brands are supported by global Tech Hubs in Barcelona, Amsterdam, Paris and Berlin. Their goal is to develop common global products and innovation platforms which all of our brands can use. This means using cutting edge technology to create highly scalable, customisable and secure products and components that free up development time and leverage our access to global data.

What you'll do & Who you are

Within the Information Systems Department, the CISO (Chief Information Security Officer) is responsible for defining and implementing the company's security policy. They work in concert with the security team in charge of operational cybersecurity, as well as the DPO (Data Protection Officer) of the leboncoin group and the Adevinta CISO. The goal is to ensure security, confidentiality, traceability, regulatory compliance, and integrity of the information system and data.

The CISO is responsible for implementing processes related to the availability, integrity, and confidentiality of information about customers, business partners, employees, and companies in accordance with the organization's information security policies.

Their mission includes:

1. Defining, disseminating, and monitoring the implementation of the Information Systems Security Policy.
2. Analyzing information systems security risks.
3. Selecting security measures and defining and monitoring implementation plans.
4. Raising awareness, training, and advising on information systems security issues.
5. Developing data backup strategy.
6. Implementing a business continuity plan.
7. Strategizing physical security of premises in relation to general services.

The scope of intervention is the leboncoin group, namely leboncoin and all its subsidiaries.

Qualifications:

We are looking for a profile with soft skills, namely:

1. Ability to convince and convey ideas
2. Teaching skills
3. Ability to onboard and work across departments without hierarchical links
4. Rigorous
5. Ability to work in an Agile environment where teams constantly adapt
6. Results-oriented

Technical skills would also be a significant plus:

1. Basics of the OSI model (flow security, http concepts, layer 2 security, IDS/IPS/WAF)
2. Basics of encryption (asymmetric vs. symmetric)
3. Notions of secure development (sanitizing variable values)
4. Able to describe, technically and in broad terms, how a company compromise unfolds
5. Must know and be able to explain the limitations of defensive security
6. In-depth knowledge of information security technologies, regulatory compliance, information governance, and privacy best practices

Additional information:

• Position based in Paris
• Compensation based on education level / experience level
• Partial remote work possible.
Benefits

Life at Adevinta comes with its perks! Our Adevintans enjoy the following benefits:

• An attractive Base Salary
• Participation in our Short-Term Incentive plan (annual bonus)
• Work From Anywhere: Enjoy up to 20 days a year of working from anywhere!
• A 24/7 Employee Assistance Program for you and your family, because we care
• Win together, lose together is one of our key behaviours. At Adevinta you will find a collaborative environment with an opportunity to explore your potential and grow

On top of these, we also provide a range of locally relevant benefits. Wanna know more? Apply and ask our recruiters!

Adevinta is an equal opportunity employer and we value diversity. We do not discriminate on the basis of race, religion, colour, national origin, gender, sexual orientation, age, marital status or disability status.

If you feel like you don't meet all of the requirements for this role but are interested, please consider applying anyway. Research suggests that women and individuals from underrepresented groups may self-select out of opportunities if they don't meet 100% of the job requirements. We strongly encourage people from historically excluded groups to apply and look forward to speaking with you.