
Ivalua · France
Manager Sécurité Applicative Senior (H/F) (Massy - France) Créée en 2000, Ivalua est un leader mondial dans l’édition de solutions cloud de gestion des achat...
Manager Sécurité Applicative Senior (H/F)
(Massy - France)
Créée en 2000, Ivalua est un leader mondial dans l’édition de solutions cloud de gestion des achats.
Chez Ivalua, nous sommes une communauté mondiale d'experts convaincus que la transformation numérique rend les chaînes
d'approvisionnement plus durables et résilientes, tout en améliorant la collaboration avec les fournisseurs. Nous y parvenons
grâce à notre plateforme cloud de gestion des dépenses, qui permet à des centaines de grandes marques de gérer leurs dépenses et
leurs fournisseur tout en optimisant leur rentabilité, leur performance ESG (Environnement, Sociale et Gouvernance), de réduire
les risques et d’améliorer leur productivité. Animés par nos passions et nourris par nos ambitions communes, nous nous donnons les
moyens de relever les défis et de créer des expériences impactantes pour nos clients et notre écosystème partenaire, tout en
donnant du sens à nos équipes.
Découvrez en plus sur www.ivalua.com. Suivez-nous sur LinkedIn
CONTEXTE : Vous ferez partie de l'équipe InfoSec avec pour mission de construire, maintenir et améliorer continuellement la
sécurité de notre application, offrant ainsi l'assurance de protection et de sécurité à nos clients. Notre équipe est
opérationnelle, avec un fort esprit de résolution de problèmes, capable de penser de manière holistique à la mise en œuvre et de
fournir des solutions pour relever les défis à long terme de nos clients. .
RÔLE : En tant que Senior Manager AppSec, vous consacrerez une part majeure de votre rôle au pilotage, à la stratégie et à la
gestion du programme de sécurité applicative, tout en restant le pilier technique et le soutien de l'équipe opérationnelle. Votre
mission sera de repenser, structurer et diriger notre programme AppSec à l'échelle mondiale.
Nous recherchons un(e) Senior Manager AppSec stratégique et technique pour orchestrer la sécurité de notre application SaaS ainsi
que de l'écosystème internet-facing d'Ivalua. Ce rôle hybride nécessite une forte collaboration avec la R&D (Solution Owners,
Framework Architects, Dev Leads) afin d'intégrer la sécurité dès la genèse de chaque nouveau produit.
Vous serez garant(e) de la priorisation des tâches face aux défis de bande passante, de la gestion des escalades clients complexes
et de l'automatisation des processus de détection en tirant parti des technologies de pointe.
transparente dans les processus de la R&D pour tout nouveau développement de produit
profondeur technique sur les sujets complexes
sécurité et fluidifier le cycle de vie du développement logiciel
optimisant l'usage de l'IA pour la détection et la remédiation
de correction
requêtes, identifier rapidement les points clés et vulgariser les concepts techniques de sécurité auprès des parties prenantes
Si vous avez une solide expérience en sécurité applicative, un leadership naturel et une vision stratégique de la DevSecOps, ce
rôle est fait pour vous.
directement avec des équipes de développeurs
processus de défense
rigueur méthodologique malgré les contraintes de temps
proposer des solutions holistiques durables
Si votre candidature correspond aux compétences souhaitées pour ce rôle, notre équipe de recrutement vous contactera pour
planifier un premier échange téléphonique. Faites un pas de plus vers la réalisation de vos objectifs - postulez dès aujourd'hui
!
Un recruteur dédié vous guidera à chaque étape du processus de recrutement. Nous sommes là pour vous accompagner!
Notre processus de recrutement est conçu pour évaluer vos compétences à travers une série d'entretiens personnalisés avec nos
équipes. Les entretiens se dérouleront virtuellement et en personne dans nos locaux.
passionnées par leur travail et guidées par une même vision,
valorisée,
team building),
Portés par nos différences - Votre énergie est notre force !
Unis par nos valeurs, nous célébrons la diversité et l’équité dans toute leur étendue pour construire un environnement de travail
inclusif. Pour aider nos clients à rendre leurs chaînes d’approvisionnement plus efficaces, durables et résilientes, nous comptons
sur nos équipes internationales aux parcours, compétences et perspectives divers et variés. Nous croyons en l’égalité des
opportunités et en la diversité comme moteurs d’innovation, favorisant un esprit d’inclusivité, un environnement de travail
productif et agréable, et en offrant des perspectives de carrière épanouissantes pour tous les Ivaluans.
Explorez la culture Ivalua - visionnez cette vidéo pour en savoir plus !
Senior Security Analyst - GRC (Massy - France) Founded in 2000, Ivalua is a leading global provider of cloud-based procurement solutions. COMPANY OVERVIEW At Ivalua we are a global community of exceptional professionals, who believe that digital transformation revolutionizes supply chain sustainability and resiliency to unlock the power of supplier collaboration. We achieve this through our leading cloud-based spend management platform that empowers hundreds of the world's most admired brands to effectively manage all categories of spend and all suppliers to increase profitability, improve ESG (environmental, social, and corporate governance) performance, lower risk, and improve productivity. Driven by our passions and fueled by our shared ambitions, we empower and challenge each other to create meaningful experiences for our colleagues, customers, partners, and communities. Learn more at www.ivalua.com. Follow us on LinkedIn THE OPPORTUNITY CONTEXT: You will be part of the InfoSec team with a mission to build, maintain, and continuously improve our Information Security program, providing peace of mind and assurance of protection and safety to our customers. Our team is hands-on, with a strong problem-solving mindset, capable of thinking holistically about implementation and providing solutions to address our customers' long-term challenges. We work hard and play hard, enjoying various indoor and outdoor activities organized by the company, allowing you to focus, collaborate, and unleash your creativity. ROLE: We are looking for a Senior Security Analyst to join our InfoSec team. This role will help drive various GRC activities which include supporting prospect and customer security questions, maintaining security policies, supporting security audits and assessments and driving new security certifications/compliance initiatives. WHAT YOU WILL DO WITH US * Lead and support compliance initiatives across global and regional frameworks including SOC 1/SOC 2, ISO 27001, IRAP, PCI-DSS, SecNumCloud, Cyber Essentials Plus (CE+), BSI C5, NIST 800-53 * Evaluate technical controls across the technology stack, including all layers of the TCP/IP model (e.g. network segmentation, firewall rulesets, TLS/SSL configuration, IDS/IPS, access controls, application security, encryption in transit/at rest, cloud security configurations), and translate security requirements into actionable guidance for engineering and infrastructure teams. * Drive and manage customer security audits, security questionnaires, and contract reviews with a primary focus on the EMEA region. Participate in the negotiation and review of French contracts to ensure alignment with security and compliance obligations. * Attend prospect and customer meetings and effectively present Ivalua’s security architecture and control information to them. * Lead or support internal and third party security risk management processes, including risk identification, analysis, scoring, treatment planning, and ongoing monitoring. * Support continuous compliance monitoring activities using manual and automation and GRC tooling to maintain control effectiveness, generate evidence, and ensure audit readiness. * Own execution and coordination of key security and availability controls such as Business Impact Analysis (BIA), Disaster Recovery testing, security incident response exercises, access reviews, etc. YOUR PROFILE If you have the below experience and strengths this role could be for you: Skills and Experience: * At least 4 years of experience as Security Analyst GRC * Strong working knowledge of security, risk, and compliance frameworks (e.g. NIST CSF & 800-53, ISO 27001, SOC, HITRUST, HIPAA, PCI-DSS, GDPR) * Direct experience managing audits, self-assessments, or risk assessments against one or more InfoSec frameworks listed above * Experience performing or supporting security risk management processes (risk assessments, risk registers, business impact analysis) * Familiarity with continuous compliance and monitoring platforms * Good understanding of cloud platforms (Azure, AWS, GCP) and ability to discuss security architecture and control implementation with technical teams * Knowledge and experience working with IT and security personnel as well as security concepts across all layers of technology (network, infrastructure, web applications, cloud environments) * Knowledge of risk and security industry literature and knowledge bases (e.g. OWASP, MITRE ATT&CK, NIST 800-39) * Relevant audit and/or Information Security certifications (e.g. CISSP, CISA, CISM, Azure Cloud Security) are desired * Prior experience at a Big 4 firm or in a security/compliance function in a cloud/SaaS environment is a plus Soft Skills: * Excellent interpersonal, communication, and organizational skills. Ability to communicate efficiently and professionally in both French and English, including in contractual, regulatory, and technical contexts * Demonstrated ability to work across geographically distributed teams and with external vendors, auditors, or regulators. * Strong organizational skills and attention to detail; able to manage multiple competing priorities in a fast-paced environment * High degree of initiative, self-motivation, and ability to work independently with limited supervision WHAT HAPPENS NEXT If your application fits this specific position’s needs, our skilled Talent team will reach out to schedule an initial screening call. Get one step closer to achieving your goals – apply today! Our Talent team will guide you through every step of the interview process - from preparation to completion. They're here to support you! Our recruitment process is designed to assess your competencies through a series of personalized interviews with internal stakeholders relevant to the role. Interviews will be conducted virtually via video or on-site with face-to-face meetings. LIFE AT IVALUA * Hybrid working model (3 days in the office per week) * We're a team dedicated to pushing the boundaries of product innovation and technology * Sustainable Growth, Privately Held * A stable and cash-flow positive Company since 10 years * Snacks and weekly lunches in the office * Feel empowered to pursue your goals with improved team collaboration and increased creativity/productivity * Unlock and unleash your full professional potential with our exceptional training and career development program * Join a dynamic and international team of top-notch professionals who are experts in their respective fields * Collaborate with like-minded individuals who are deeply passionate and highly motivated about their work * Experience a truly diverse and inclusive work environment where your unique contributions are highly valued * Regular social events, competitive outings, team running events, and musical activities * Comparably recognized Ivalua for the following (https://www.comparably.com/companies/ivalua): Powered by People - Powered by You! United by our values we embrace diversity and equity in the broadest possible sense to create an inclusive workplace. To help our customers make supply chains more efficient, sustainable and resilient, we rely on a global team with a variety of backgrounds, skills and views. We believe in equal opportunity and in diversity as a driver of innovation that cultivates a spirit of inclusiveness, creates a productive and fun place to work, and provides fulfilling career opportunities for all Ivaluans. https://www.linkedin.com/company/ivalua/about/ Experience life at Ivalua - check out our captivating video! Gain insight into our unique company culture and get a glimpse of what it's like to work with us. #LI-MV1 #LI-HYBRID
This is Adyen Adyen provides payments, data, and financial products in a single solution for customers like Meta, Uber, H&M, and Microsoft - making us the financial technology platform of choice. At Adyen, everything we do is engineered for ambition. For our teams, we create an environment with opportunities for our people to succeed, backed by the culture and support to ensure they are enabled to truly own their careers. We are motivated individuals who tackle unique technical challenges at scale and solve them as a team. Together, we deliver innovative and ethical solutions that help businesses achieve their ambitions faster. THE ROLE Every time someone pays online, there's a moment that determines whether the transaction succeeds or fails, not because the card was declined, but because the experience got in the way. That moment is authentication. And getting it right is one of the highest-leverage problems in payments. As a Senior Product Manager for Uplift & Shopper Authentication, you'll own how Adyen makes that moment as seamless and secure as possible for hundreds of millions of transactions across some of the world's largest merchants. You'll work at the intersection of conversion, trust, and user experience, helping Adyen move from rule-based friction toward intelligent, invisible authentication. You don't need to arrive with deep authentication knowledge. We are looking for sharp product instincts, the ability to hold complexity without losing sight of the user, and a track record of turning hard tradeoffs into better outcomes. WHAT YOU'LL DO * Own the authentication checkout experience: Identify where authentication introduces unnecessary friction, and build products that remove it without compromising security. You'll define what "seamless and secure" means in practice, and lead the roadmap to get there. * Make authentication seamless: Work with ML and engineering teams to develop smarter decisioning so authentication happens when it truly needs to, and doesn't when it doesn't. Success looks like merchants converting more, users noticing less. * Bring new methods to scale: From passkeys to device-based verification, the authentication landscape is evolving fast. You'll take emerging approaches from pilot to global rollout, sequencing thoughtfully across markets and merchant types. * Navigate a genuinely complex problem space: Authentication sits at the intersection of schemes, issuers, merchants, and end users, each with different incentives and constraints. You'll need to cut through that complexity and make clear product calls. * Partner across the organisation: You'll work closely with ML, engineering, design, commercial, and data teams, and occasionally with schemes and external partners. Strong alignment across those surfaces is part of the job. WHO YOU ARE * A strong product craftsperson: You have 5+ years in a product role where you owned meaningful outcomes, not just features. You know what it means to define the right problem, make a call under uncertainty, and drive it to delivery. * Conversion and UX minded: You think about the user first. You care about the moment of friction, the drop-off, the confusion, and you translate that into clear product decisions. Experience with checkout flows, onboarding, or consumer-facing experiences is a plus, not a requirement. * Comfortable with complexity: Authentication is technically layered and commercially nuanced. You don't need to know the protocols on day one. You do need to be intellectually curious, able to ramp quickly on new domains, and confident making decisions in ambiguous environments. * Data-fluent: You define success upfront, track it rigorously, and use metrics to make calls. * Direct and collaborative: You write clearly, frame trade-offs cleanly, and earn alignment rather than requiring it. You're comfortable pushing back on stakeholders and comfortable being pushed back on. WHY THIS ROLE Authentication is a problem that looks solved from the outside and is deeply unsolved on the inside. There's real technical depth here, a strong team, and a canvas that touches virtually every online payment Adyen processes. If you care about user experience at scale and want to work on infrastructure that most people never see but everyone depends on, this is a rare opportunity. Our Diversity, Equity and Inclusion commitments Our unique approach is a product of our diverse perspectives. This diversity of backgrounds and cultures is essential in helping us maintain our momentum. Our business and technical challenges are unique, and we need as many different voices as possible to join us in solving them - voices like yours. No matter who you are or where you’re from, we welcome you to be your true self at Adyen. Studies show that women and members of underrepresented communities apply for jobs only if they meet 100% of the qualifications. Does this sound like you? If so, Adyen encourages you to reconsider and apply. We look forward to your application! What’s next? Ensuring a smooth and enjoyable candidate experience is critical for us. We aim to get back to you regarding your application within 5 business days. Our interview process tends to take about 4 weeks to complete, but may fluctuate depending on the role. Learn more about our hiring process here. Don’t be afraid to let us know if you need more flexibility. This role is based out of our Amsterdam office. We are an office-first company and value in-person collaboration; we do not offer remote-only roles.
This is Adyen Adyen provides payments, data, and financial products in a single solution for customers like Meta, Uber, H&M, and Microsoft - making us the financial technology platform of choice. At Adyen, everything we do is engineered for ambition. For our teams, we create an environment with opportunities for our people to succeed, backed by the culture and support to ensure they are enabled to truly own their careers. We are motivated individuals who tackle unique technical challenges at scale and solve them as a team. Together, we deliver innovative and ethical solutions that help businesses achieve their ambitions faster. AI Transformation Manager - Finance We are looking for a proactive AI Transformation Manager - Finance to join our Finance Data & Technology (FD&T) team in Amsterdam. This is a hands-on Senior IC role, where you will directly design, build, and deploy AI-driven workflows as we transition from successful AI products to a production-ready agentic ecosystem. Adopting AI is more than setting up experiments; it’s about building the structural foundation that ensures data is trusted, processes are documented, and AI agents operate within rigorous governance and security frameworks. You will define "what good looks like," establishing the evaluation (Evals) and validation frameworks necessary to scale high-impact AI solutions across all Finance teams. What you’ll do * Strengthen the Context Foundation: Optimize and build the context foundation of documentation and system integrations (SOPs, Skills, MCPs) required to give AI agents accurate context it needs to accomplish a task. * Strengthen on the Data Foundation: Partner with our engineering team to evolve our data infrastructure (Finance/Commercial Data Core) to be the trusted source of truth for input for AI agents, directly enabling accurate financial outcomes and reliable reporting. * Establish AI Governance & Security: Partner with Security, Privacy, and GenAI teams to design a governance strategy that includes access controls and ensures agents operate safely within our systems. * Define Evaluation Frameworks: Build production-ready evals to measure AI accuracy and reliability, ensuring we move beyond simple usage metrics to actual business value and time saved. * Scale Agentic Systems: Transition successful AI experiments into stable systems that execute complex Finance workflows, focusing on "toil" reduction and end-to-end automation. Who you are * Technical Expert: You have a proven track record (5+ years) as a Technical Program/Product Manager, Transformation Manager or Data Analytics/Science, with knowledge of LLMs (e.g., their probabilistic nature) and agentic architectures. * Systems Thinker: You think in systems, not features. You design how data, context, and agents interact end-to-end, with clear ownership, controls, and feedback loops to ensure financial correctness at scale. * Bias for Action: You work with a strong sense of ownership and are comfortable challenging the status quo or process to maximize the potential of AI agents. * Collaborator: You are an excellent communicator who can secure stakeholder buy-in across diverse disciplines, from Engineering to Legal and Finance Leadership. * Adaptive: You operate with the understanding that today’s best practices will quickly become outdated. You stay engaged with what’s changing, learn fast, and convert new developments into tangible improvements in our technology. Nice to have * The "Translator": You speak both "Finance" and "Tech," with the ability to translate complex financial logic into technical specifications for AI systems. Our Diversity, Equity and Inclusion commitments Our unique approach is a product of our diverse perspectives. This diversity of backgrounds and cultures is essential in helping us maintain our momentum. Our business and technical challenges are unique, and we need as many different voices as possible to join us in solving them - voices like yours. No matter who you are or where you’re from, we welcome you to be your true self at Adyen. Studies show that women and members of underrepresented communities apply for jobs only if they meet 100% of the qualifications. Does this sound like you? If so, Adyen encourages you to reconsider and apply. We look forward to your application! What’s next? Ensuring a smooth and enjoyable candidate experience is critical for us. We aim to get back to you regarding your application within 5 business days. Our interview process tends to take about 4 weeks to complete, but may fluctuate depending on the role. Learn more about our hiring process here. Don’t be afraid to let us know if you need more flexibility. This role is based out of our Amsterdam office. We are an office-first company and value in-person collaboration; we do not offer remote-only roles.