Account Cybersecurity Lead

Capgemini is a global leader in partnering with companies to transform and manage their business by harnessing the power of technology. The Group has over 360,000 team members globally in more than 50 countries and offers expertise in cloud, data, AI, connectivity, software, digital engineering, and platforms. The company is committed to diversity and inclusion and supports employee well-being and continuous learning.

• 5+ years in cybersecurity with 3+ years in a lead/manager role covering governance, risk, compliance, and client facing responsibilities.
• Deep knowledge of ISO/IEC 27001 ISMS and NIST CSF; practical audit/assessor experience.
• Demonstrated leadership of complex incidents, audit programs, and third party/customer assessments.
• Very good command of English, both written and spoken.

• Own account level cybersecurity governance: establish and maintain the account security management system, policies, and controls; ensure alignment with BSv IMS and control statements.
• Client leadership & relationship management: act as the senior cybersecurity counterpart to the client; represent security in executive and governance forums; ensure contractual security obligations, audit requests, and regulatory requirements are met.
• ISMS, risk & compliance oversight: drive the risk management program, ensure risk treatment plans are executed; report posture against ISO 27001/NIST CSF control objectives and Group Baseline Policy.
• Assurance & audits: own the annual assurance plan; coordinate external/internal audits, customer assessments, and remediation follow through across all deliveries and suppliers.
• BCM & crisis readiness: ensure Business Continuity Management planning and testing are in place for the account; integrate with crisis/incident playbooks and simulations.
• Incident leadership: chair major incident bridges for security events, ensure timely triage, containment, root cause and corrective actions, and executive communications.
• Strategy & enablement: translate BSv initiatives into account level plans; sponsor awareness campaigns, phishing/crisis exercises, and “cyber by design” adoption in delivery.
• People & operating model: lead the account security team, set ways of working, demand intake, and sourcing strategy for account specific security needs.