• Chief Information Security Officer

    Safran (Irving, TX)


    Chief Information Security Officer

    Job details

    General information

    Entity

    Safran is an international high-technology group, operating in the aviation (propulsion, equipment and interiors), defense and space markets. Its core purpose is to contribute to a safer, more sustainable world, where air transport is more environmentally friendly, comfortable and accessible. Safran has a global presence, with 100,000 employees and sales of 27.3 billion euros in 2024, and holds, alone or in partnership, world or regional leadership positions in its core markets.

     

    Safran is in the 2nd place in the aerospace and defense industry in TIME magazine's "World's best companies 2024" ranking.

     

    Reference number

     

    2026-170488

    Job details

    Domain

     

    Performance and Support

     

    Job field / Job profile

     

    IT - Chief information security officer

     

    Job title

     

    Chief Information Security Officer

     

    Employment type

     

    Permanent

     

    Professional category

     

    Employees / Staff

     

    Part time / Full time

     

    Full-time

    Job description

    Safran USA is seeking a Chief Information Security Officer (CISO) to lead cybersecurity, regulatory compliance, and cyber operations for Safran USA shared Services and across all U.S. entities and shared services.

     

    The Safran USA CISO is accountable for achieving and sustaining CMMC certification across Safran USA shared services, including AWS GovCloud and Microsoft 365 GCC High, harmonizing cybersecurity architectures and processes across U.S. companies, and ensuring compliance with U.S. regulatory frameworks including NIST SP800-171, CMMC 2.0, ITAR.

     

    This role operates as the U.S. cybersecurity authority and as an extension of Safran Group Global Cyber organization, while retaining operational ownership for U.S.-specific regulatory execution, incident response, and compliance activities.

     

    This position is reporting to Group CISO and will be integrated in the Global Cybersecurity organization of more than 140 Cybersecurity specialists delivering Cybersecurity services to all Safran companies across the world.

    CORE MISSION OBJECTIVES

    Achieve and maintain CMMC Level 2 certification for Safran USA and all in-scope shared services.

    Harmonize cybersecurity architectures, shared services, and control implementations across Safran USA companies.

    Lead cybersecurity strategy and execution for ITAR, DFARS, and other U.S.-regulated requirements.

    Implement the SOC and CERT operational model in the U.S. as an extension of the Global SOC et CERT located in France (Paris Cyber team).

    Deploy a consistent U.S. cyber operational model to manage incidents, security requests, audits, and compliance activities, while applying the Safran Standard (procedures and workflows) deployed in all Safran companies, and as an extension of global Cyber security services.

    Deploy Secure-by-Design approach across all Safran USA IT and digital projects.

     

    ________________________________________

    KEY RESPONSIBILITIES

    Executive ownership of CMMC 2.0 Level 2 certification and audit readiness across Safran USA.

    Governance of CUI enclaves, system boundaries, shared responsibility matrixes, SSPs, POA&Ms, and risk registers.

    Review and approval of cybersecurity architectures for U.S. projects involving regulated data and shared services.

    Leadership of SOC, CERT, and incident response operations as an extension of Group Cyber organization.

    Executive engagement with CIO, Legal, Compliance, HR, and Business leadership.

    Representation of Safran USA during audits, assessments, and regulatory engagements.

     

    But what else? (advantages, specificities, etc.)

    REPORTING LINE & MANAGEMENT

    Reporting line to Group CISO, and dotted line to Safran USA CIO

     

    Build and Manage a strong Cybersecurity teams and mindset, results and services oriented while sizing all synergies possible with US companies

     

    Candidate skills & requirements

    TECHNICAL & REGULATORY EXPERTISE

    Deep expertise in:

    o CMMC 2.0 (Level 2)

    o NIST 800-171 / 800-53

    o ITAR / Export Controls

    o DFARS

     

    Strong understanding of SOC, CERT, vulnerability management, and incident response models.

     

    Proven experience securing AWS GovCloud and Microsoft 365 GCC High environments.

    LEADERSHIP ATTRIBUTES

    Excellent communication and influencing skills.

     

    Strong judgment in high-pressure regulatory and incident scenarios.

     

    Autonomous, accountable, and collaborative leadership style aligned with Global Safran Cybersecurity organization and objectives

     

    Education & Experience

     

    Bachelor's degree in Cybersecurity, Computer Science, Information Technology, Engineering, or related field (Master's preferred).

     

    10+ years of progressive cybersecurity leadership experience, including senior roles.

     

    Demonstrated leadership of CMMC, NIST 800-171, ITAR, and DFARS compliance programs.

     

    Experience operating in multinational, matrixed organizations.

     
     

    Annual salary

    TBD

    Job location

     

    Job location

     

    North America, United States, Texas

     

    City (-ies)

     

    2201 W. Royal Lane Irving, TX 75063 Irving

     

    Applicant criteria

     

    Minimum education level achieved

     

    Bachelor's Degree

     

    Minimum experience level required

     

    More than 8 years

     

    Additional Languages preferred

     

    English (Mother tongue)

     

    ITAR Controlled Position: Select "Yes" if role requires U.S. citizenship/permanent residency

     

    Yes