Head of Information Security at Keller Executive Search

Our Client is seeking an experienced and hands-on Head of Information Security to lead and operationalize their cybersecurity strategy across their international operations. This is a group-level function with significant operational responsibility, requiring a leader who can balance strategic vision with practical implementation across multiple locations.

As Head of Information Security, you will be responsible for ensuring compliance with relevant regulations, and building a robust security culture across all business units. This role requires someone who can work collaboratively with diverse stakeholders while maintaining the technical depth to guide hands-on security initiatives.

Key Responsibilities

Strategic Leadership

• Develop and maintain the group-wide information security strategy aligned with business objectives
• Define and implement security policies, standards, and procedures across all locations (4 continents)
• Establish and manage the information security governance framework
• Lead security risk assessment processes and develop mitigation strategies
• Report to executive leadership on security posture, incidents, and program effectiveness

Operational Security Management

• Oversee day-to-day security operations including monitoring, incident response, and threat management
• Manage security infrastructure including firewalls, SIEM, endpoint protection, EDR/XDR, and email protection, and access controls
• Lead vulnerability management and penetration testing programs
• Implement and maintain security controls
• Ensure business continuity and disaster recovery capabilities for critical systems

Compliance & Risk Management

• Ensure compliance with GDPR (jointly with Privacy team), NIS2 Directive, and other relevant regulations (notably European)
• Manage security audits and coordinate with internal and external auditors
• Support ISO 27001 certification process and other relevant security frameworks
• Develop and track security metrics and KPIs

Hands-On Technical Involvement

• Participate in architecture reviews and security design decisions
• Conduct security assessments of new technologies and business initiatives
• Troubleshoot complex security incidents and lead major incident response
• Evaluate and implement security technologies and tools
• Stay current with emerging threats and security technologies

Team Leadership & Culture

• Build, mentor, and develop the information security team across locations
• Foster a security-aware culture through training and awareness programs
• Collaborate with IT, operations, legal, and business units across countries
• Serve as the primary point of contact for security matters
• Promote best practices and continuous improvement in security operations

Requirements

Required Qualifications

• Bachelors’ degree in Information Technology, Computer Science, Cybersecurity
• 10 years in information security with at least 3 years in leadership roles
• Deep knowledge of security frameworks (ISO 27001, NIS2, CIS Controls, SOC2)
• Strong background in hands-on security implementation and operations

Preferred Qualifications

• Proven experience managing security operations in multi-site or international environments
• Experience with SIEM, IDS/IPS, vulnerability management, and security automation
• Familiarity with security architecture and secure development practices

• Thorough understanding of GDPR and European data protection regulations
• Experience with security audit processes and certification maintenance

Certifications (Preferred)

• CISSP, CISM, or equivalent security certification
• ISO 27001 Lead Auditor/Implementer

Benefits

• Competitive compensation package aligned with local market levels (typically in the range of EUR 120–130k)
• Standard local leave allocations
• Standard local benefits
• Hybrid / Fully remote working arrangement to be discussed

Equal Employment Opportunity and Non-Discrimination Policy

Equal Employment Opportunity Statement: Keller Executive Search and our clients are Equal Opportunity Employers operating in compliance with French law. For all positions, whether with Keller Executive Search or our clients, qualified applicants will receive consideration for employment without discrimination based on origin, sex, sexual orientation, gender identity, age, family situation, pregnancy, genetic characteristics, ethnicity, nationality, race, political opinions, trade union activities, religious beliefs, physical appearance, family name, place of residence, health status, loss of autonomy, disability, ability to express oneself in a language other than French, or any other criterion protected under Articles L1132-1 and following of the French Labor Code (Code du travail).

Commitment to Diversity: Keller Executive Search and its clients are committed to fostering a diverse and inclusive work environment where all individuals are valued and respected.

Reasonable Accommodations: Keller Executive Search and our clients are committed to implementing reasonable accommodations for individuals with disabilities and pregnant individuals in accordance with applicable French legislation. We engage in dialogue to determine appropriate and effective accommodations.

Compensation Information: For client positions, compensation information is available in the job post. If not initially provided, it will be shared during the interview process. Actual compensation may depend on skills, experience, and comparison to employees in similar roles. Salary ranges may vary based on role and location.

Compliance with Laws: Keller Executive Search and our clients comply with all French and European Union laws governing non-discrimination in employment, including the French Labor Code and applicable EU directives. This policy applies to all employment terms and conditions, including recruiting, hiring, promotion, termination, leaves of absence, compensation, and training.

Workplace Harassment: Keller Executive Search and our clients expressly prohibit any form of workplace harassment, whether moral or sexual, in accordance with Articles L1152-1 and L1153-1 of the French Labor Code. Any form of discrimination or harassment based on legally protected criteria is strictly prohibited.

Gender Equality: Keller Executive Search and our clients are committed to ensuring professional equality between women and men in accordance with the Law of September 5, 2018 on freedom to choose one's professional future. We conduct regular analyses to ensure pay equity.

Data Protection and Privacy: In accordance with the General Data Protection Regulation (GDPR) and the French Data Protection Act (Loi Informatique et Libertés), personal data collected during the recruitment process is processed confidentially and securely. Candidates have the right to access, rectify, erase, restrict processing, and port their data. For more information about our privacy policy, please visit our website.

Work Authorization Verification: Keller Executive Search and/or our clients may verify work authorization in France in accordance with applicable regulations. Information about required documents will be provided during the application process where applicable.

Note: This job posting may be for a position with Keller Executive Search or one of our clients. The specific employer will be identified during the application and interview process. Employment laws and requirements may vary depending on the employer and location.