Chief Information Security Officer (CISO)

About this role

Requirements

• 10+ years of proven experience in information systems security
• Significant experience in a software publisher, ideally SaaS, or at a large-scale digital platform organization
• Demonstrated success implementing security standards such as ISO 27001, SOC 2, or PCI-DSS
• Experience building and operating a SOC, conducting penetration tests, and managing external security vendors across multiple domains
• Deep command of information security concepts and risk management, particularly in Cloud environments
• Proficiency in penetration testing methodologies and attack technique analysis
• Strong cross-functional leadership and executive-level communication skills
• Ability to work autonomously, drive initiatives, and translate complex security topics into clear, actionable guidance
• Rigor and thoroughness in policy writing, audit preparation, and stakeholder engagement
• Languages
• Professional proficiency in French & English
• Our Hiring Process
• TA Screen with Mathilde - TAS
• Interview with our CTO - Nagi
• Interview with our VP Platform Engineering - Romain
• Interview with our CEO
• We welcome collaborators with their diverse perspectives and experiences to power us forward. These often far exceed conventional job requirements and help us create a culture of continuous learning. If you’re ready to join a global leader powering digital transformation for 450+ of the world’s most innovative retailers and B2B organizations.
• We may use Artificial Intelligence (AI) solutions to help streamline our hiring process, including screening applications, analyzing resumes, and assessing responses. While AI helps us work efficiently, all final hiring decisions are made by humans. For more information, visit our AI Guidelines for Candidates and Interviews.

About Mirakl

Founded in 2012, Mirakl has been at the forefront of marketplace innovation, empowering every business to compete in the platform economy. Today, Mirakl’s operating system combines an enterprise marketplace solution (Mirakl Platform) that enables retailers and B2B organizations to launch, scale, and operate marketplaces and dropship, AI-powered multichannel selling (Mirakl Connect), retail media (Mirakl Ads) and an agentic commerce infrastructure (Mirakl Nexus). With dual headquarters in Boston and Paris, Mirakl helps a global ecosystem of 450+ marketplaces (B2C and B2B) and a network of over 100k third-party marketplace sellers. Brands like Macy’s, Decathlon, Carrefour, Asos, and Airbus Helicopters use Mirakl to grow their businesses in new and remarkable ways. For more information, visit www.mirakl.com. Mirakl in Numbers: 🗓️ Founded in 2012 | Member of French Tech Next40 👥 750+ employees in 9 offices worldwide: Paris, Barcelona, Bordeaux, Boston, London, Munich, New York, Sydney, Tokyo Our Values: Working at Mirakl means accelerating your career alongside ambitious, passionate, and supportive colleagues. We're proud of the diversity of backgrounds, perspectives, and experiences that make our teams unique. Our 5 values guide how we collaborate: 💡 Work Hard Together: Teamwork and collaboration are the foundation of our success 🏆 Get Things Done: We prioritize action and efficiency for impactful results 🚀 Go Above & Beyond: We tackle challenges proactively and always aim for excellence 🎓 Succeed Through Expertise: Knowledge sharing and continuous learning are core to our culture 🤝 Satisfy & Empower Clients: We're committed to our clients' success The Team You'll Join You'll be part of our global Security team. The team consists of 15 security professionals covering a worldwide scope. Together, you'll be ensuring the security, integrity, confidentiality, and compliance of Mirakl's Information Systems and the products Mirakl brings to market. Your Impact Define and deploy Mirakl's global security strategy, put in place the organizational structures to ensure its execution, and demonstrate its effectiveness through factual security dashboards Identify, assess, and map risks and threats; translate findings into actionable plans including business continuity, monitoring processes, and crisis management protocols Own the Information Security Policy (ISSP) — draft, update, and enforce it — while maintaining ISO 27001 certification and SOC II Type 2 report, and evaluating opportunities to expand our certification portfolio Build and operate a robust incident response capability; continuously assess organizational resilience through penetration tests and multi-vector compromise simulations Foster a security culture across Mirakl through awareness programs and best practices, and partner with Labs teams on DevSecOps and Secure Coding approaches What You'll Bring to the Role