Patch Velocity & Software Lifecycle Lead H/F - Sanofi
- Lyon - 69
- CDI
- Télétravail accepté
- Sanofi
Les missions du poste
Le contenu du poste est libellé en anglais car il nécessite de nombreuses interactions avec nos filiales à l'international, l'anglais étant la langue de travail.This job offer is accessible to all, regardless of gender.Job title:Patch Velocity & Software Lifecycle LeadLocation: Lyon or Gentilly, FranceType:Permanent,Full-time,HybridAbout the jobAt Sanofi, we are strengthening our cybersecurity posture by accelerating the remediation of vulnerabilities and enforcing robust software lifecycle governance.As Patch Velocity & Software Lifecycle Lead within our Vulnerability Operations Center Team, you'll play a critical role in reducing the organization's exposure to cyber risks by driving patching velocity and coverage, controlling software obsolescence, and ensuring compliance across our Digital landscape.This role combines operational acceleration, effective orchestration and transversal leadership to deliver measurable risk reduction at scale.One-line Mission:Accelerate vulnerability remediation and enforce software lifecycle governance to sustainably reduce Sanofi's exposure to cybersecurity risks.Ready to get started?About Sanofi:We're an R&D-driven, AI-powered biopharma company committed to improving people's lives and delivering compelling growth. Our deep understanding of the immune system - and innovative pipeline - enables us to invent medicines and vaccines that treat and protect millions of people around the world. Together, we chase the miracles of science to improve people's lives.Main responsibilitiesDrive Patch Velocity & Remediation PerformanceAccelerate patch deployment across servers, middleware, endpoints, and application layersReduce Mean Time To Patch (MTTP) and vulnerability backlogEnsure adherence to remediation SLAs, especially for critical and high-risk vulnerabilitiesIdentify and remove bottlenecks impacting remediation speedEnforce Software Lifecycle & Obsolescence ManagementDefine and drive software lifecycle standards (EOL/EOS management)Ensure continuous upgrade and modernization of software componentsReduce risks related to obsolete and unsupported technologiesStrengthen Software Governance & Catalog ControlEnforce compliance with the Digital-approved software catalogImplement mechanisms to detect and remove unauthorized softwareReduce exposure linked to shadow IT and unmanaged software componentsEnsure Security Compliance by DesignGuarantee that systems are secure and compliant at delivery (golden images, baselines)Maintain compliance throughout the asset lifecycleEmbed patching and lifecycle requirements into operational processesDefine Policies, Standards & Operating ModelFormalize patch management and software lifecycle policiesDefine clear roles, responsibilities, and governance frameworksEnsure alignment between Security, IT, and Business stakeholdersDrive Transversal ExecutionEngage and align cross-functional teams:Infrastructure & CloudDigital WorkplaceApplication OwnersCyberSecurity & Risk and ComplianceActivate the right organizational and technical levers to meet objectivesMeasure Performance & Drive Continuous ImprovementDefine and monitor key KPIs:Mean Time To Patch (MTTP)SLA compliance for vulnerability remediationPatch and lifecycle compliance ratesUnauthorized software rateTrack progress and ensure sustainable improvement (non-regression)Provide clear reporting and executive visibilityAbout you Experience:Proven experience in cybersecurity, vulnerability management, or infrastructure securityTrack record in driving cross-functional transformation or remediation programsStrong understanding of:Patch management processes and toolsSoftware lifecycle and obsolescence risksEnterprise IT environments (endpoints, servers, applications)Technical skills:Experience with Windows and Linux environments, and patch management tools (Intune, SCCM, Microsoft Azure Arc, Red Hat Satellite, etc.)Experience with cloud environments (Azure and AWS)Experience with vulnerability management, Endpoint Detection & Response (EDR), and SOAR toolsProficiency in Python and PowerShell scriptingAdvanced use of AI technologies for improving operationsSoft skills:Strong result orientation with focus on measurable risk reductionAbility to drive performance and accountability across teamsExcellent stakeholder management and influencing skillsData-driven mindset with experience defining and tracking KPIsStructured, pragmatic, and execution-focusedEducation: Bachelor's or Master's degree in Information Security, IT, or related fieldLanguages: Anglais, FrançaisKey Success Factor:Measurable improvement in patching velocity and SLA complianceReduction in critical and high vulnerabilities exposureDecrease in obsolete and unauthorized software footprintSustainable increase in global IT compliance levelsWhy choose us?Play a key role in reducing cyber risk exposure at scaleDrive a high-impact, outcome-oriented transformationWork at the intersection of security, IT, and digital transformationContribute to building a more resilient and secure Sanofi environmentWhat we offer you:A fixed salary over 12 months, supplemented by a short-term incentive, as well as a collective variable compensation based on Sanofi Group results.Because taking care of our employees is also our mission: 31 days of paid leave + RTT depending on your status, remote work up to 2 days/week, quality health insurance, public transport coverage up to 80%, extended maternity/parental leave (18/14 weeks), Group Savings Plan & PERCOL with employer matching, PERO, numerous CSE benefits, internal and international mobility opportunities, learning & development opportunities, and many other benefits to discover.#LI-FRA#LI-HybridChez Sanofi, la diversité et l'inclusion sont au coeur de notre fonctionnement et sont intégrées à nos Valeurs fondamentales. Nous sommes conscients que pour exploiter véritablement la richesse que la diversité nous apporte, nous devons faire preuve d'inclusion et créer un environnement de travail où ces différences peuvent s'épanouir et être développées pour améliorer le quotidien de nos collègues, patients et clients. Nous respectons et valorisons la diversité de nos collaborateurs, leurs parcours et leurs expériences dans un objectif d'égalité des chances pour tous.Dans le cadre de son engagement diversité, Sanofi accueille et intègre des collaborateurs en situation de handicap.La fourchette salariale pour ce poste est:€64000,00 - €85333La rémunération finale sera déterminée en fonction de l'expérience démontrée, des compétences, de la localisation et d'autres facteurs pertinents. Les employés peuvent être éligibles pour participer aux programmes d'avantages sociaux de l'entreprise.