GRP/REN (Gaz Renewables & Power / Renewables) is TotalEnergies' Division in charge of the development, construction, O&M, asset management and financing of renewables projects: large and small scale (distributed generation) solar, onshore and offshore wind, off-grid energy, storage. Its strategic objective is to accumulate 35 GW by 2025, 100 GW of operational renewables capacity by 2030

Given this ambitious growth agenda, the rapid pace of operations on a daily basis, and the regular changes, agility at scale and fast-learning are imperatives to continue capturing market opportunities and honing our innovation capacities while industrializing processes and streamlining our organization.

The position is based in France and requires regular site visits.

GRP/REN (Gaz Renewables & Power / Renewables) est la division de TotalEnergies en charge du développement, de la construction, de l'exploitation et de la maintenance (O&M), de la gestion des actifs et du financement des projets d'énergies renouvelables : solaire à grande et petite échelle (production distribuée), éolien terrestre et offshore, énergie hors réseau, stockage. Son objectif stratégique est d'accumuler 35 GW d'ici 2025, 100 GW de capacité opérationnelle en énergies renouvelables d'ici 2030.

Compte tenu de cet agenda de croissance ambitieux, du rythme rapide des opérations au quotidien et des changements réguliers, l'agilité et l'apprentissage rapide sont impératifs pour continuer à saisir les opportunités du marché et affiner nos capacités d'innovation tout en industrialisant les processus et en rationalisant notre organisation.

Le poste est basé en France et nécessite des visites régulières sur site.

Local Industrial Cybersecurity Officer (L-iCSO : Local-industrial CyberSecurity Officer) for all Renewables affiliates in APAC

• Enforce Information Systems Cybersecurity requirements.
• Lead the activation of, and coordination with, the Company CERT and the GRP Branch cybersecurity team in dealing with industrial cybersecurity related Emergency Response activities. Alert their supervisor and the GRP Branch industrial Cybersecurity Officer (B-iCSO : Branch Industrial Cyber Security Officer) in case of cybersecurity incident, near incident, actual or potential serious risk related to the cybersecurity of industrial control systems. First point of contact with the Company's SOC in case of threat detection.
• Participate with central teams in the Cybersecurity internal control program.
• Monitor implementation of action plans drawn up following audits.
• Support change management in the affiliate to ensure the organization maintains industrial cybersecurity awareness. Promote awareness and training at site level (e.g. Cyber month, phishing campaigns) and the use of the Company's cybersecurity tools.
• Submit exemption requests to the GRP B-iCSO.
• Process interface flow modification requests.
• Carry out and keep up to date inventories for Industrial Information Systems.
• Coordinate with the REN Global Cyber Process Lead to ensure coherence of cybersecurity processes and practices. Refer to the Process Lead for guidance on global initiatives, tools, templates and documentation.

Project industrial Cybersecurity Officer (P-iCSO : Project-industrial Cyber Security Officer)

• Integrate TotalEnergies cybersecurity standards and best practices to technical specifications used for EPC selection. Propose any improvements or clarification to the document.
• Evaluate EPC proposals related to cybersecurity and industrial network and servers.
• Technically oversee the industrial network and infrastructure implementation by third parties (e.g. EPC) to ensure compliance with TotalEnergies cybersecurity rules.
• Drive TotalEnergies cybersecurity solution implementations (e.g. NEOS, SAFIIS). Ensure proper coordination with construction team and respect of global planning. Ensure quality of overall delivery.

You have a degree in Electrical / Control Engineering, 10 years of experience including 5 years in industrial cybersecurity, preferably within the Renewables sector.

Competencies:

• Understanding in all industrial & IT areas (telecom, Windows, Unix, Industrial protocols, Security appliances, control systems, SCADA, PLC…).
• Strong competencies in IT & Industrial cybersecurity technologies and risk management

Key behaviors: Good relationships ability including good listening and pedagogy

Languages: Fluent in French and English

Vous êtes diplômé en génie électrique ou en systèmes d'informations, et avez 10 ans d'expérience professionnelle dont 5 ans en cybersécurité industrielle, de préférence dans le secteur des énergies renouvelables.

Compétences techniques :

* Compréhension de tous les domaines industriels et informatiques (télécom, Windows, Unix, protocoles industriels, appareils de sécurité, systèmes de contrôle, SCADA, PLC…).

* Fortes compétences en technologies de cybersécurité IT et industrielle et en gestion des risques.

Comportements clés : Bonne capacité relationnelle incluant une bonne écoute et pédagogie.

Langues : Courant en français et en anglais.