Regional Information Security Officer (RISO) - MEA Region

Job Summary

The Regional Information Security Officer (RISO) serves as the key cybersecurity and data protection leader within the region, acting as a strategic liaison between the Global CISO organization and regional ICT/business units. The RISO ensures alignment with global security objectives, drives regional compliance, and fosters a culture of risk awareness and resilience across ICT and business functions regionally.

Key Responsibilities

Strategic & Governance Alignment

* Support and implement global CISO transformation initiatives within the region.
* Ensure regional compliance with global cybersecurity policies, standards, and objectives.
* Act as the primary liaison between the Global CISO team and regional business units to facilitate risk reduction and leadership awareness.

Cybersecurity Operations & Incident Management

* Coordinate with the Cyber Security Operations Center (CSOC) for regional incident response, crisis management, and business continuity.
* Collaborate with the Data Privacy Office during data breach events, ensuring compliance with regional regulations (e.g., GDPR, LGPD).
* Support OT cybersecurity initiatives and legacy system/application security, including IAM and access controls.

Compliance & Risk Management

* Partner with SCRT (Strategy & Governance, Risk and Compliance) for regional security attestations and regulatory compliance (e.g., SEC, CSL, E-Cyber, NIS2).
* Conduct and lead regional cybersecurity and data privacy committee meetings.
* Ensure the cascade of decisions from Data Privacy, Risk & Compliance committees to regional ICT leadership.

Stakeholder Engagement & Communication

* Lead RISO governance rituals with the CIO/Regional ICT Delegate and relevant ICT & business stakeholders.
* Provide local language communication support for cybersecurity awareness and initiatives.
* Act as a regional point of contact for urgent approvals and escalations.

Talent & Resource Management

* Oversee regional cybersecurity internship programs.
* Support regional HR requirements related to cybersecurity roles and responsibilities.
* Collaborate with regional finance, legal, and purchasing teams on contract management and budget oversight.

Integration & Architecture

* Contribute to the secure integration of new IT systems in alignment with regional legal and data protection requirements.
* Maintain awareness of regional infrastructure, including dedicated vs. shared architecture (e.g., China vs. Rest of World).

Qualifications

* Bachelor's or Master’s degree in Information Security
* Minimum 5 years of experience in cybersecurity
* Professional certifications (e.g., CISSP, CISM, CISA) preferred.
* Proven experience in cybersecurity leadership within a multinational environment.
* Strong understanding of regional regulations and global security frameworks.
* Excellent communication skills in English and local language(s).

At Stellantis, we assess candidates based on qualifications, merit and business needs.

We welcome applications from people of all gender identities, age, ethnicity, nationality, religion, sexual orientation and disability. Diverse teams will allow us to better meet the evolving needs of our customers and care for our future.

We celebrate diversity and are committed to creating an inclusive environment for all our employees. We aim to encourage a culture where people can be themselves and be valued for their contribution. We are committed to making reasonable adjustments to the recruitment process as required. Please add any adjustment requests to your application. is entrusted with the critical mission of scrutinizing the entire logistic process design and evaluating preliminary decisions in the target plant. They are expected to approach each aspect with a challenging mindset, aiming to minimize costs and investments. Their expertise will be pivotal in preparing comparative profitability analyses for alternative process scenarios, providing the management team with sensible suggestions that enable informed best-cost decision-making.