Cyber Crisis Simulation, Recovery & Learnings Manager

Job purpose

Schneider Electric is seeking a Crisis Simulation, Recovery & Learnings manager. This role will report to Schneider Electric's Head of Cyber Defense and Incident Response. They will participate to enhance the cybersecurity posture of Schneider Electric, ensuring and strengthening cybersecurity Resilience and Trust.

The successful candidate will be responsible for leading the cyber crisis and incident simulations, by helping cyber and non-cyber key stakeholders understand their roles during a crisis or incident.

He/she will take advantage of the experience in incidents, usual and unusual attacks patterns, and simulations to lead the recovery and learning narrative with business leaders through tailored examples and case studies.

• Supervise the engagement with cyber experts and different business units to define incidents and crisis scenarios, align internal and external stakeholders, manage the organization
• Align scenarios with the cyber strategy & Cyber Risk Register by defining an annual strategy for simulations (formats, geographic repartition...)
• Lead the Red Team, the execution of the simulations, and actively assist the preparation of the exercises
• Animate key meetings with senior stakeholders and players including internal executives and external parties such as customers, suppliers, and national authorities
• Craft and present lessons learned, action plans and next steps, and supervise their implementation

• Understand the cyber-Risk Register in-depth to propose appropriate mapping of the risks.
• Analyze the Executive Debriefings following major cybersecurity incidents to understand their corrective actions (RCA) and perform transversal analysis across people process technology
• Consolidate preventive and corrective actions to the most recurring issues, control deficiencies, failing controls etc.
• Proactively assess current processes to identify security gaps by connecting with different business, digital, operational units
• Supervise, coordinate, and supportthe implementation of these corrective actions with the appropriate practice owners
• Support in driving the conversation with business leadership based on experienced incidents
• Support in delivering corporate messaging for the Board and executive meetings, preparing the materials, presentation etc.
• Develop and maintain internal processes as well as KPIs to measure the success and impact of the incident response process and learnings and document the output across our cyber risk register.
• Enquire about international cyber news and trends in defense, geopolitical challenges, TTPs and tools
• Establish and maintain relationship with the CERT community and national authorities supported by RCISOs and other cybersecurity leaders

• Master Education in Engineering or Business

• Previous experience in Cyber Security and Project Management
• Ability to communicate and evolve in a multicultural context
• Understand and articulate cyber and technical topics (attack methodologies, frameworks like NIST, in-depths processes and challenges...)
• Continuous desire to learn
• Oral and writing skills, excellent relationship to collaborate and communicate with other teams
• Strength of conviction and confidence to communicate to senior leadership and officials with open-minds and diplomacy
• Fluent in English
• Strong ability to find relevant solutions, be persistent and agile to ask tough questions and dig through the information
• Ability to work in autonomy