Facility Security Manager (Fsm) & Deputy Site Risk Representative

Facility Security Manager (FSM) & Deputy Site Risk RepresentativePromotes and upholds the Security Policy:
Employees are aware of and adhere to the Safran Security Policy and the combined procedures in terms of protection of:Employees on site and during business trips
Tangible goods and assets (on site and outside of site)
Intangible assets (all type of sensitive information) on site and outside of the siteImplement, with the active support of the Human Resources Department, procedures relative to Security, especially to:Employees Travels Management
Employees Behavioral Management
Movements of personnel (Joining, internal moves & resignation)
Accessibility of personnel within the facility
Management and Control of Sensitive InformationRaises awareness and communication on Security issues:
Conducts communication and awareness-raising through campaigns, Townhall meeting, TV screen and other means on the existence and application of Security rules and best practices.
Motivate Management to be a driving force and Employees to respect the rules.
Ensures that applicable Security Regulations and company procedures are strictly applied and compliance.
Assist and advise managers and particularly the Site Managing Director:
To prepare and animate a Site Security Committee (at least twice a year) to provide a Security Status for the site.
Status to include the existence, impact and development of threats and regulatory and contractual obligations, and the effectiveness of measures and means of protection.
Manages Security feared events through the Risk Management.
Identify, assess all types of threats in order to be able to determine the appropriate measures (treatment plans).
Support security risk analysis that need to be carried out by respective Key Managers and the site Risk representative.
Re-assess and formalize the site security risk cartography on a cyclical basis (RiTo updated minimum twice a year) and especially following a security event or a new regulation impacting the site.
* RiTo = Risk Tool
Assess vulnerabilities of the risk scenarios against existing measures of protection.
Security events management:
Contribute to the Site Crisis Management System & Business Continuity Plan to help identifying security event main scenarios & deploy adapted security reflex sheets (based on what to do guides templates) and continuity plans.
Belongs to any Crisis Management Team when appropriate.
To report, in accordance with Safran established procedures (factual description, analysis, define and enforce corrective measures), facility/site security related events and deviations including as appropriate attacks, failures, detection of potential risks, malicious acts, theft, loss, damage, industrial spying, loss of capital, manipulation attempts, threats or endangerment to individuals, problem relating to employees, visitors, interns, temporary workers, sub-contractors to Managing Director.
Escalation to Global Security Officer (GSO)(using Guardtek tool) .
A-2 On-Site Security:
Managing 3rd party Security Service Provider:
Sourcing of new Service Provider and Contract renewal.
Performance assessment.
Liaising with Security guards (Welcome Center) to ensure all periodic site's inspections and assigned tasks are carried out on time, diligently and ethically.
Protect the site and employees:
Ensuring the security equipment, site's door access and surveillance system (CCTV) reliability and in functional mode at all times.
Liaising with door access and CCTV supplier, Facility and Information Systems (IS) department to troubleshoot and to resolve any performance issues of the systems (software and hardware) in reasonable duration.
Review the security control equipment mapping and employees access control when deemed necessary.
With the help of experts on-site, identify potential targets (valuable assets, products, machines, sensitive information, skills, hazardous wastes).
Maintain an efficient network in relation with market players, in particular on services and materials contributing to Security (security guards provider, maintenance of security equipment,…).
Based on security risk cartography & potential regulations or contractual obligations, formalize and update the site zoning in order to define, implement and control measures and means of protection to reduce vulnerabilities.
Security equipment spare parts inventory management.
A-3 Off-Site Security:
Maintain an efficient network in particular with law enforcement agencies, representatives of state and private institutions, especially professional associations if there are any.
Ensure employees' security are protected on national or international business trips and assignments.
Manage the employees travelling in risky countries (security recommendations to be reminded, answering potential questions,...).
A-4 Information Protection (GRP-0076):
Conducts communication and awareness-raising through campaigns, Townhall meeting, TV screen and other means on the existence and application of:
Information protection requirements,
Digital Protection Tool for secure communications,
Physical protection tools,
Detection and Alert tools.
Ensure Information Classifications Registers made available and updated (minimum once a year) by the function or process owner.
Liaising with HR department for education and training of employees.
4 pillars of Risk Management:
B-1 Documentary Risk (Ex.
PSIP)
B-3 Crisis Management
MISSIONS:
Implementation procedures for:
Risk Management PCD-SLS-099 and related documents.
Crisis Management system PCD-SLS-069 and related documents, of which BCP process.
PCD-SLS-640 and related documents.
Litigation Hold GRP-0179.
B-1 SAFRAN Documentary Risk Integrity Program (ex.
PSIP):
In accordance with the applicable PSIP policy, to establish and update a training planunder the coordination of the Risk Manager and the appropriate functions (Training coordinator, Managers) within the entity:
Identify people to be provided "PSIP awareness sessions" and groups of individuals to attend a "PSIP practical workshops" training session.
Ensure people have been made aware (or trained),
Validate qualitative and quantitative post evaluation for each session drawn up by the Training coordinator,
to trigger Documentary Risk MOOC or e-quiz as refresher when necessary.
In accordance with personalized goals defined by the Risk Manager,contribute to host sessions.
Participate in theimplementation of the procedure GRP-0179 , 'Litigation Procedure (Legal) Hold Group' among relevant stakeholders.
The Risk Representative and Deputy of the entity ensures, among relevant stakeholders, the implementation of lessons learnt and attends to them.
Establish and update a training plan under the coordination of the Risk Managerand the appropriate functions (Training coordinator, Managers) within the entity:
Identify people to be trained,
Validate qualitative and quantitative post evaluation for each training sessions drawn up by the Training coordinator,
In accordance with personalized goals defined by the Risk Manager, contribute to hosting training sessions.
Establish and update the risk cartography(and the risk register combined)of the entity:
Make identify by the relevant stakeholders all major kinds of risks that may affect the entity,
Make assess the risks by the relevant stakeholders in terms of impact, likelihood and level of control,
Ensure the designation of risk owners to draw up treatment plan and ensure their implementations,
Host, minimum on asemester basis , the Risk Committee of the entity.
Ensure methodological support to the operational functions located in the entity:
Guarantor of the risk management methodology within the entity, the Risk Representative accompanies the operational stakeholders in its implementation, including:
To ensure periodic reviews (minimum on a semester basis) of risk review and treatment plans combined with the risk owners in their processes/areas of responsibilities.
To review focus risk in the "1 month, 1 risk" meeting ritual.
Suggest areas for improvementof risk management to the Risk Manager and implement areas for validated improvement.
B-3 Crisis Management:
Establish and update a training planunder the coordination of the Risk Manager and the appropriate functions (Training coordinator, Managers) within the entity:
Ensure the implementation of a crisis management systemin the flow down of the 1st rank company procedure.
Support the BCP approach (Business Continuity Plan), as BCP Coordinator(as defined in PCD-SLS-640) within the entity.
The Risk Representative of the entity ensures, among relevant stakeholders, the implementation oflessons learntand attends to them.
Identify people to be trained, and propose them to the Risk Manager for validation,
Validate qualitative and quantitative post evaluation training sessions synthesis drawn up by the Training coordinator.
Participates in audits of insurance consultants, and ensures the inclusion of their recommendations in the risks cartography of the entity.
Bring any support requested by the Corporate Insurance Manager.
Requirements:
Degree in security management, risk management or other related disciplines.
Minimum of 3 years of working experience in risk management or security related field.
Strong analytical and problem-solving skills.
Excellent communication and interpersonal skills.
Experience and knowledgeable on various security topics, dealing with prevention, protection, response and investigation.
Strong operational risk background with in-depth experience in managing risk for business.
Computer skills in Microsoft Office applications, VBA & PowerBI.
Safran Landing Systems (Safran Group France) is the world leader in aircraft landing and braking systems.
World leader in carbon brakes, equipping more than 4,400 aircraft in service, and holding close to 50% of market share in this segment.
Employing worldwide staff of 6,250 employees, Safran Landing Systems' continuing growth has created international job opportunities in our worldwide locations in Europe, North America and Asia.#J-18808-Ljbffr