Levallois-Perret, Île-de-France
Tech
Full - Time
09-Jan-2023

L’Oréal welcomes people from diverse background and people with disability.

Hey !

L’Oréal is present in 150 countries on five continents. For more than a century, L’Oréal has devoted itself solely to one business: beauty; it is now the industry world leader with €32.28 billion consolidated sales (in 2021).  

The group's mission is to provide the best in cosmetics innovation to women and men around the world with respect for their diversity. Our ambition for the coming years is to win over another one billion consumers around the world by creating the cosmetic products that meet the infinite diversity of their beauty needs and desires. To achieve this ambition, L’Oréal can rely on the support of a performing IT team.  

IT Europe’s purpose is to answer and anticipate business expectations efficiently by deploying and developing IT solutions across Europe and Africa.  

As a true business partner for all our divisions, our multicultural team directly contributes to the success of L’Oréal’s brand portfolio: Lancôme, Yves-Saint Laurent, Biotherm, Kiehl’s, La Roche Posay, Vichy, Garnier, Maybelline New-York, Kerastase, Redken (…) 


Here is what we are looking for…

We love people that are curious, collaborative, eager to have an impact and who value innovation, autonomy, and team spirit.

💡 In this specific position, it will be important for you to have:

At least 3 years experience in a position of IT Infrastructure Cybersecurity Officer

The candidate will quickly demonstrate independence on his/her topics. 

 

Technical Skills:   

  • Strong security skills.  
  • Knowledge and experience in an ITIL process-based organization. 
  • ISO 27K knowledge (certification or equivalent) 
  • Good knowledge of service management system and IT activities   


Professional Skills: 

  • Experience of working multi-geography teams  
  • Strong communication skills at all levels 
  • Strong contract management skills 
  • Good project management methodology skills (PMI, AGILE) 
  • Fluent in English 


Qualifications: 

  • Degree qualification, or equivalent in Computer Science 


It comes with great challenges such as…

Responsibilities and main missions: 


As Infrastructure Cybersecurity Officer, you are in charge of the Disaster Recovery Program and the focal point for all security, controls and compliancy related topics on the IT Europe Infrastructure scope. This role will include the management of security remediation plans, operations improvement, audits, and service provider’s coordination for the account of L’Oréal IT Europe Infrastructures. 

As a member of the Service Delivery team, you will be the main point of contact for all infrastructure security services procured through the framework of your managed contracts. Your mission will be articulated around the following main fields: 

 

DRP & CONTINUITY MANAGEMENT 

  • Ensure the continuity of service as contractually agreed 
  • Lead the infrastructure disaster recovery program  
  • Define and prepare disaster recovery tests and manage DRP project follow-up 
  • Coordinate the preparation and the execution of the DRP, and maintain associated procedures/ deliverables 
  • Manage the communication between IT Teams, Business Teams and infrastructures suppliers 

 

SECURITY OPERATION MANANGEMENT 

  • Manage contractual framework for the security scope of each provider  
  • Supervise infrastructure security audits on the infrastructure Scope.  
  • Manage security changes with the provider in accordance with the L’Oréal change management process and constraints  
  • Perform the necessary controls linked to group security policy 
  • Maintain and follow up continuous improvement process 

 

SECURITY PROJECT MANAGEMENT 

  • According to L’Oréal security strategies and security audit results, lead the identified security projects on infrastructure scope (Network, workstation, Patching, Hardening) 
  • Organize with all our infrastructure suppliers, the implementation of the supplier security plan 
  • Identification of infrastructure security risks, communication and development of best practice solutions, and implementation of mitigating controls consistent with company strategy. 
  • Act as the IT liaison to lead communications with internal security and infrastructure teams and our suppliers. 

 

REPORTING 

  • Report the security contract deviances and necessary alignment 
  • Proactively report security deviances forecasted or noticed 
  • Report providers KPIs through service reporting  
  • Financial review and forecast according to budgeted services   

 

Main team challenges:  

Support L’Oréal IT Transformation program. Service Delivery – Security team has to take into account new designs, new technologies and has to build new processes mainly linked to cloud security topics. 


Service Delivery – Security team works with many different teams: 

  • Europe Infrastructures domain teams in order to deliver new projects, which requires the capacity to exchange on technical subjects 
  • Our suppliers in order to control the security compliancy of our assets 
  • Europe Security team in order to take into accounts their requirements and to adapt the actions plan depending on the risk level 
  • Europe countries for who Europe infrastructures teams deliver services and for who security is part of major stakes 
  • Group Infrastructures and Security teams in order to take into account L’Oréal Global Security Strategy which includes working on global projects launched in the context of our Cyber Security Program 
  • Others such as auditors to ensure our compliancy with legal requirements 


Number of people in the team:  

Since several years the number of security topics to manage at infrastructures level has been significantly increased. Currently the team is composed of 5 people (one employee and 4 consultants) 

The team is part of Service Delivery team composed of 8 employees who come from 6 different countries in Europe.  

 

Mission of team members: 

  • Warehouse Security PM currently working on network security in warehouses 
  • Vulnerability Management PM who organizes the remediation of vulnerabilities with suppliers and IT owners and who works with the group on the target model 
  • Infra PM who defines the strategy for network flows review in the cloud 

 

Specific cool projects: 

  • Security enhancement (High Visibility): Disaster Recovery Program, Cyber Security Program 
  • Monitoring & Reporting: Security Dashboard 

 

Adjectives and values to describe the team:  

  • Dynamic 
  • Cooperative  
  • Improvement driven 

Now, do you imagine being part of an amazing tech transformation?

L’Oréal wants to become the #1 BeautyTech company, meaning inventing the beauty of the future while becoming the company of the future where Tech has become strategic.

BeautyTech environment at L’Oréal means:

  • 2000 tech positions, growing years after years
  • Multiple tech domains: Data, Digital, Cloud, Cyber Security, IT architecture, DevOps, Applications and Infrastructure
  • Teams of diverse, innovative, skilled and passionate minds fueled by tech innovations

Have a look on our LinkedIn page to get some more information about the Group!

What is it like to join one of our Tech Team?

Looking for an inspiring role? Try to look at this one

Hey, you! We’re looking for talents… Do you have some of them?

If you recognize yourself within the short description below, we can’t wait to meet you!

Imagine yourself having a great impact! It could be if…



  • 在30天内,您最多可以申请三个职位。
  • 请注意 : 职位一经申请即无法撤回,请审慎选择符合您期待的职位。
  • 您可以在"您的求职空间"查看您已申请的职位。
  • 请不要用其他电子邮件申请多个帐号,您的帐号会被合并且职位申请纪录会被删除.