Sécurité Globale Des Contenus

Job Description

Senior Manager - Global Content Security / Directeur(trice) principal(e) - Sécurité globale des contenus

Technicolor Group is a creative technology company providing world-class production expertise driven by one purpose: The realization of ambitious and extraordinary ideas. Home to a network of award-winning studios, MPC, The Mill, Mikros Animation and Technicolor Games, we inspire creative companies across the world to produce their most iconic work. Our global teams of artists and technologists partner with the creative community across film, television, animation, gaming, brand experience and advertising to bring the universal art of storytelling to audiences everywhere.

Job Description:

We are seeking a highly skilled and experienced Senior Manager to be part of the Global Content Security team within the Technicolor Group. The position plays a key role in managing various processes, implementation and operations of day-to-day pre/post-production security and content protection needs for Technicolor Group and its brands. This position supports many areas of security within Technicolor Creative Studios across multiple brands in Media / Entertainment markets inclusive of Animation, Gaming, Feature Film / Episodic and Advertising. This overarching role will have direct involvement with internal and external technology security and content protection deployments to provide Technicolor Group with the most secure environment possible. This role will report to the Senior Vice President, Technology & Security and will have a direct partnership with the central support function teams and local studio security programs for the region.

Primary Responsibilities to include, but not limited to:

Program Management & Oversight:
• Lead and manage all aspects of the Content Security Program.
• Conduct regular internal self-assessments and drive remediation efforts.
• Develop and manage the program budget.
• Lead customer assessments in partnership with the local studios for Physical. Digital and Management Security domains to ensure compliance and identify areas for improvement.
• Chair regular Security Steering Committee (SSC) meetings (every 2-3 weeks).
• Oversee quarterly Security Control Monitoring (SCM) activities.
• Act as Information/Content Security subject matter expert to third-party and in-house studio teams

Compliance & Reporting:
• Ensure compliance with industry standards, contractual obligations, and legal requirements related to content security
• Provide guidance and training in Technicolor's security standards while understanding studio workflow needs
• Collection and distribution of metrics measuring effectiveness of current security posture and performance of security function

Threat Intelligence & Risk Management:
• Monitor and analyze threat intelligence and advisories.
• Identify , review and document potential future-use security products, architectures and technologies
• Coordinate the implementation of project-specific content security solutions to meet production and workflow needs
• Conduct and manage security assessments.
• Lead investigations into any security breaches or content leaks, identifying the root cause and implementing corrective actions. Work closely with the relevant teams to handle the aftermath of security incidents, ensuring proper documentation and resolution.
• Manage security exceptions and ensure appropriate approvals .
• Contribute to Governance, Risk, and Compliance (GRC) initiatives and reporting.
• Apply current knowledge of IT trends and systems processes to identify security and risk management issues and opportunities for improvement

Vendor & Third-Party Risk Management:
• Conduct vendor security assessments and manage third-party risk.
• Oversee Threat Simulation & Optimization (TSO) activities, including internal and external penetration tests.

Training & Awareness:
• Develop and deliver security awareness training programs to ensure all employees and stakeholders are educated on security risks and practices .
• Maintain and update security best practices and guidelines.

Business Continuity & Disaster Recovery:
• Manage the Business Continuity Management System (BCMS) program, including maintenance, training, and updates.
• Oversee Business Impact Analyses (BIA) and update Business Continuity Plans (BCP).
• Conduct BCP tabletop exercises to test and refine response plans.
Operational Support:
• Maintain and update the Security SharePoint site (GCS + SCM).
• Address client-specific security requirements.
• Support vulnerability management programs.
• Track and manage GDPR compliance tasks.
Other Critical Responsibilities:

The Senior Manager, Global Content Security is a liaison to collaborate with the following business units within Technicolor and the Technicolor Group Brands :
• Security Operations
• Global Systems Architecture
• Infrastructure & Technology (Production and Enterprise IT)
• Software / Research & Development
• Sourcing
• Internal Audit
• Legal

In addition to internal collaboration, the Senior Manager acts as a studio representative with local, state and federal partners such as the Motion Picture Association, Media Entertainment Services Alliance, DPP, etc.

The Senior Manager also works closely with other studios such as Sony, Disney, Fox, Marvel, Paramount, Netflix, Amazon, NBCUniversal, etc. to compare best practices and collaborate on new initiatives.
Occasionally work non-standard shifts and/or on-call to support the requirements of the organization. Willingness to travel up to 30% domestically and internationally.

Skills and Experience
• Proven experience working in Content / Information Security
• Knowledge of the Media and Entertainment industry, Feature Film Production and Post-Production industries, services and workflows ( e.g. DI, editing, VFX, Data Management, dubbing, etc.)
• Knowledge of studio IT systems, including production and post-production environments
• Experience evaluating physical and digital security protocols at facilities
• General knowledge of security risk management principles
• Broad technology expertise with application, system integration, data, and/or infrastructure knowledge
• Strong understanding of the following:
• LAN, WAN, TCP/ IP and security protocols
• Network architecture
• Vulnerability scanning and common methods of exploiting vulnerabilities
• Endpoint protection and Data Loss Prevention solutions
• Storage solutions (e.g., SAN, NAS, encrypted storage mechanisms)
• Digital transfer tools (e.g., Aspera, Signiant, 5th Kind)
• Secure configurations of Linux, Windows and Mac based servers and endpoints
• Computer investigation processes and techniques
• Excellent communication skills, with the ability to articulate complex security issues to non-technical stakeholders
• Preferred Qualifications: CISSP, CISA/CISM, or CEH designation
• Required Education: Bachelor's degree in Information Technology , Computer Science, IT Engineering
or related field

Personal Attributes
• Highly committed and able to work independently and as a team.
• Positive attitude towards learning.
• Extremely organized with good communication skills and excellent attention to detail.
• Deadline orientated and ability to remain calm in a fast-paced and high-pressure environment.
• Positive attitude towards learning, s

[more...]

Jobcode: Reference SBJ-re7kb8-18-222-110-240-42 in your application.