Patch Velocity & Software Lifecycle Lead
Le contenu du poste est libellé en anglais car il nécessite de nombreuses interactions avec nos filiales à l’international, l'anglais étant la langue de travail.
This job offer is accessible to all, regardless of gender.
Job title: Patch Velocity & Software Lifecycle Lead
Location: Lyon or Gentilly, France
Type: Permanent,Full-time,Hybrid
About the job
At Sanofi, we are strengthening our cybersecurity posture by accelerating the remediation of vulnerabilities and enforcing robust software lifecycle governance.
As Patch Velocity & Software Lifecycle Lead within our Vulnerability Operations Center Team, you’ll play a critical role in reducing the organization’s exposure to cyber risks by driving patching velocity and coverage, controlling software obsolescence, and ensuring compliance across our Digital landscape.
This role combines operational acceleration, effective orchestration and transversal leadership to deliver measurable risk reduction at scale.
One-line Mission :Accelerate vulnerability remediation and enforce software lifecycle governance to sustainably reduce Sanofi’s exposure to cybersecurity risks.
Ready to get started?
About Sanofi:
We’re an R&D-driven, AI-powered biopharma company committed to improving people’s lives and delivering compelling growth. Our deep understanding of the immune system – and innovative pipeline – enables us to invent medicines and vaccines that treat and protect millions of people around the world. Together, we chase the miracles of science to improve people’s lives.
Main responsibilities
Drive Patch Velocity & Remediation Performance
- Accelerate patch deployment across servers, middleware, endpoints, and application layers
- Reduce Mean Time To Patch (MTTP) and vulnerability backlog
- Ensure adherence to remediation SLAs, especially for critical and high-risk vulnerabilities
- Identify and remove bottlenecks impacting remediation speed
Enforce Software Lifecycle & Obsolescence Management
- Define and drive software lifecycle standards (EOL/EOS management)
- Ensure continuous upgrade and modernization of software components
- Reduce risks related to obsolete and unsupported technologies
Strengthen Software Governance & Catalog Control
- Enforce compliance with the Digital-approved software catalog
- Implement mechanisms to detect and remove unauthorized software
- Reduce exposure linked to shadow IT and unmanaged software components
Ensure Security Compliance by Design
- Guarantee that systems are secure and compliant at delivery (golden images, baselines)
- Maintain compliance throughout the asset lifecycle
- Embed patching and lifecycle requirements into operational processes
Define Policies, Standards & Operating Model
- Formalize patch management and software lifecycle policies
- Define clear roles, responsibilities, and governance frameworks
- Ensure alignment between Security, IT, and Business stakeholders
Drive Transversal Execution
- Engage and align cross-functional teams:
- Infrastructure & Cloud
- Digital Workplace
- Application Owners
- CyberSecurity & Risk and Compliance
- Activate the right organizational and technical levers to meet objectives
Measure Performance & Drive Continuous Improvement
- Define and monitor key KPIs:
- Mean Time To Patch (MTTP)
- SLA compliance for vulnerability remediation
- Patch and lifecycle compliance rates
- Unauthorized software rate
- Track Progress and ensure sustainable improvement (non-regression)
- Provide clear reporting and executive visibility
About you
Experience:
- Proven experience in cybersecurity, vulnerability management, or infrastructure security
- Track record in driving cross-functional transformation or remediation programs
- Strong understanding of:
- Patch management processes and tools
- Software lifecycle and obsolescence risks
- Enterprise IT environments (endpoints, servers, applications)
Technical skills:
- Experience with Windows and Linux environments, and patch management tools (Intune, SCCM, Microsoft Azure Arc, Red Hat Satellite, etc.)
- Experience with cloud environments (Azure and AWS)
- Experience with vulnerability management, Endpoint Detection & Response (EDR), and SOAR tools
- Proficiency in Python and PowerShell scripting
- Advanced use of AI technologies for improving operations
Soft skills:
- Strong result orientation with focus on measurable risk reduction
- Ability to drive performance and accountability across teams
- Excellent stakeholder management and influencing skills
- Data-driven mindset with experience defining and tracking KPIs
- Structured, pragmatic, and execution-focused
Education: Bachelor’s or Master’s degree in Information Security, IT, or related field
Languages: Anglais, Français
Key Success Factor:
- Measurable improvement in patching velocity and SLA compliance
- Reduction in critical and high vulnerabilities exposure
- Decrease in obsolete and unauthorized software footprint
- Sustainable increase in global IT compliance levels
Why choose us?
- Play a key role in reducing cyber risk exposure at scale
- Drive a high-impact, outcome-oriented transformation
- Work at the intersection of security, IT, and digital transformation
- Contribute to building a more resilient and secure Sanofi environment
What we offer you:
A fixed salary over 12 months, supplemented by a short-term incentive, as well as a collective variable compensation based on Sanofi Group results.
Because taking care of our employees is also our mission: 31 days of paid leave + RTT depending on your status, remote work up to 2 days/week, quality health insurance, public transport coverage up to 80%, extended maternity/parental leave (18/14 weeks), Group Savings Plan & PERCOL with employer matching, PERO, numerous CSE benefits, internal and international mobility opportunities, learning & development opportunities, and many other benefits to discover here .
#LI-FRA
#LI-Hybrid
Emplois Recommandés
Collaborateur(trice) comptable en alternance (DCG) - Lyon...
L'ENCG Formation, acteur de référence dans la formation en comptabilité et gestion, recrute pour un cabinet d'expertise comptable implanté à Lyon. Nous recherchons un(e) alternant(e) en DCG. Vous …
Business analyste informatique (H/F) (IT)
Tu aimes comprendre les besoins métier, trouver les meilleures solutions et être le lien entre utilisateurs et équipes techniques ? Cette opportunité de Business Analyst est faite pour toi ! ? Ton …
Enseignant chercheur en Organisation Industrielle & Supply Chain Management
Vous avez le profil pour nous rejoindre si vous souhaitez évoluer dans un environnement humain et flexible, possédez une expérience de recherche dans le domaine du lean management, de l’excellence op…
INFIRMIER COORDINATEUR (F/H)
Rejoignez les 30 000 collaborateurs de l'Appel Médical et bénéficiez de nombreuses missions et emplois les plus adaptés à vos envies et compétences tout en profitant des nombreux services et avantages…
Consultant Data Engineer Databricks - Confirmé - H/F
Description de la mission L’équipe Cloud 4 Data , forte de 70 collaborateurs, joue un rôle clé à la fois dans les projets de transformation digitale de nos clients, mais également dans l'évoluti…
Technicien Levage (F-H-X)
This position is at Bureau Veritas Group The selection process will be fully managed by Bureau Veritas Group. -- Vous êtes attiré(e) par l'électromécanique et les équipements de levage ? Rejoi…
Technicien support de proximité
Description de l'entreprise Entreprise française des Services du Numérique (ESN), HELPLINE accompagne depuis 1994 les directions informatiques et métiers dans leurs projets de transformation auto…
Comptable fournisseurs
Dans le cadre d'un renfort d'activité durant la période estivale, mon client recherche un(e) Comptable Fournisseurs avec les missions suivantes : Vos missions : - Saisie et contrôle des factures f…
Chef de projet électricité - secteur nucléaire F/H
Description de l'entreprise VACOA, c’est avant tout une ambition : relever les grands défis industriels de demain grâce à une expertise technique solide. Spécialisés dans l’Aér…
Préparateur / Préparatrice en pharmacie (H/F)
Vos missions seront les suivantes : ● Préparer les ordonnances avec précision et efficacité. ● Accueillir et avoir un rôle de conseil en répondant aux questions et en offrant des conseils appropr…