Skip to main contentA logo with &quat;the muse&quat; in dark blue text.

Security Advisor

AT Schneider Electric
Schneider Electric

Security Advisor

Lattes, France

Schneider Electric is searching for a Lead Security Advisor for its Energy Management Business Cybersecurity Innovation & Architecture Team.

The role is responsible for the adoption and implementation of the Secure Development Lifecycle framework (per Schneider Electric SDL V2 process) and in compliance to it Secure Lifecycle Management Policy and other cybersecurity policies, procedures, and best practices, and to advise on cybersecurity technical requirements for the development of secure products and systems.

The role regularly interacts with key stakeholders like representatives from offer development, architecture, regulations, conformity teams and technical leaders as well as stakeholders from the corporate Product Security Office (PSO) within Governance teams to ensure that cybersecurity guidelines and processes are executed in an efficient, effective, and compliant manner.

Want more jobs like this?

Get Computer and IT jobs delivered to your inbox every week.

Select a location
By signing up, you agree to our Terms of Service & Privacy Policy.


The ideal candidate will be able to combine process and technical advisory role with assertive engagement and escalation when appropriate. The idea is not only to have people only consulting and advising, but also "acting like owners" and having an impact in our "shift-left" strategy for "security by design".

Responsibilities:

  • Serve as the Subject Matter Expert to ensure cybersecurity topics are prioritized and embedded in the Offer development process from the design phase.
  • Provide guidance, coaching, and expertise to implement Secure Development Lifecycle practices such as threat modeling, secure design, secure coding, implementation, and security testing.
  • Collect Secure Development Lifecycle and cybersecurity metrics to contribute to data-driven strategies and plans in a protective manner.
  • Aid in the deployment of Secure Development Lifecycle and cybersecurity functionalities as required by standards such as IEC62443, and local regulations such as CRA, RED and work to improve the effectiveness and efficiency of these processes.
  • Ensure that assigned development teams adhere to risk-driven cybersecurity processes and controls throughout the development lifecycle.
  • Assist development teams in managing vulnerability triage and resolution as needed to maintain secure software environments.
  • Support teams in conducting internal Secure Development Lifecycle audits and Formal Cybersecurity Reviews (FCSRs) and ensure compliance with Schneider data security and privacy processes.
  • Perform foundational data protection and privacy screening of offers to ensure data privacy requirements are integrated from the initial design stages.
  • Represent offer development teams in Business Unit and PSO security meetings and workshops. Stay informed about new policies, procedures, cybersecurity standards, regulations, legislation, and technologies, and keep R&D leadership updated on relevant emerging activities.
  • Conduct training sessions and presentations to enhance cybersecurity competencies within development teams.
  • Monitor organizational maturity using cybersecurity maturity frameworks and track other Secure Development Lifecycle-related goals as directed.
  • Take an active part in the cybersecurity community not only in Energy Management but also globally at company level


Key Skills and Requirements

  • Ability to align operational/information security policies with business requirements.
  • Process driven with attention to detail, ability to translate operational/information security requirements into security controls in coordination with architects.
  • Ability to effectively adapt to and apply rapidly changing technology and security requirements to business needs.
  • Foundational data protection & privacy knowledge or willingness to acquire it during tenure


Qualifications and Expertise

  • +10 years experience in OT Cybersecurity.
  • Standing Certification in Cybersecurity Management such as CISSP, CSSLP; and/or IEC 62443 Certified Specialist.
  • Experience of working in an Engineering/R&D group following a Secure Development Lifecycle based on standards such as IEC 62443, ISO 21434, or Microsoft SDL; with a proven ability to engage with management and development teams.
  • Experience guiding and assisting organizations in implementing security product/system development practices.
  • Working knowledge of security and privacy standards, regulations, and legislation.
  • Demonstrated ability to develop threat models, analysing threats, and rate threat severity using established industry practices
  • Experience in driving corporate programs using influence, negotiation, and persuasion soft skill set.
  • Knowledge of static code analysis tools, secure coding standards, fuzz and penetration testing, and formal security reviews.
  • An understanding of domain appropriate communication mechanisms protocols
  • A background in domain appropriate development (e.g., embedded, cloud, mobile, industrial automation, energy management)
  • Languages: good level English is mandatory


Direct reports

  • This role will not have direct reports but will have a transversal, business unit wide stakeholder management.


Travel %

  • <10>
  • 20% in India

#LI-SM1

Why us?

At Schneider Electric we're committed to creating a workplace that gives you not just a job but a meaningful purpose in joining our mission to bring energy and efficiency to enable life, progress and sustainability for all.

We believe in e mpowering our team members to reach their full potential, fostering a sense of ownership in their work.

We embrace inclusion as a fundamental value, ensuring that every voice is heard and valued. We value differences, and welcome people from all walks of life. We believe in equal opportunities for everyone, everywhere.

If you want to be part of a company where your contributions truly matter, where you are empowered to make a difference and where inclusivity is valued, we would love to hear from you.

Discover your M eaningful, Inclusive and Empowered career at Schneider Electric.

34.2bn global revenue
+12% organic growth
135 000+ employees in 100+ countries
#1 on the Global 100 World's most sustainable corporations

You must submit an online application to be considered for any position with us. This position will be posted until filled

Schneider Electric aspires to be the most inclusive and caring company in the world, by providing equitable opportunities to everyone, everywhere, and ensuring all employees feel uniquely valued and safe to contribute their best.

We mirror the diversity of the communities in which we operate and we 'embrace different' as one of our core values. We believe our differences make us stronger as a company and as individuals and we are committed to championing inclusivity in everything we do. This extends to our Candidates and is embedded in our Hiring Practices.

You can find out more about our commitment to Diversity, Equity and Inclusion here and our DEI Policy here

Schneider Electric is an Equal Opportunity Employer. It is our policy to provide equal employment and advancement opportunities in the areas of recruiting, hiring, training, transferring, and promoting all qualified individuals regardless of race, religion, color , gender, disability, national origin, ancestry, age, military status, sexual orientation, marital status, or any other legally protected characteristic or conduct.

Client-provided location(s): 34970 Lattes, France; 38320 Eybens, France
Job ID: Schneider_Electric-73960
Employment Type: Full Time

Search Additional Jobs

Security Advisor Jobs in Lattes, FranceSecurity Advisor Jobs in Échirolles, FranceJobs in Lattes, FranceJobs in Échirolles, FranceComputer and IT Jobs in Lattes, FranceComputer and IT Jobs in Échirolles, France