Information Security Governance Consultant

About the Role:
Join a dynamic and passionate team where innovation and collaboration are at the heart of our mission. As an Information Security Governance Consultant, you will play a key role in supporting clients to establish and enhance their information security governance frameworks. You will work closely with experienced consultants and contribute to a variety of projects that make information security a strategic asset for organizations.

Key Responsibilities:

• Security Strategy & Governance:
• Define security strategies and establish short-, medium-, and long-term security programs.
• Organize information security frameworks, policies, and governance structures.
• Risk Management & Resilience:
• Perform risk management assessments and provide treatment recommendations.
• Support resilience planning, including BCP/DRP, incident management, and cyber crisis management.
• Regulatory & Standards Compliance:
• Assist clients with compliance for GDPR, CSSF, ISO 27001, NIST CSF, CIS 20, and other standards.
• Conduct maturity assessments and audits.
• CISO Support:
• Act as an advisor or interim CISO for client organizations.
• Guide clients on implementing security controls and improving information security maturity.
• Cloud Security:
• Provide expertise in securing cloud services, ensuring compliance with best practices.
• Reporting & Communication:
• Prepare clear reports and recommendations tailored to management, CISOs, and other stakeholders.

Requirements

Candidate Profile:
You are passionate about cybersecurity and aspire to make a difference in governance-focused roles. Your technical and managerial expertise enables you to analyze risks and propose pragmatic security solutions.

Skills & Experience:

• Strong knowledge of governance frameworks and their role in structuring security approaches.
• Familiarity with cybersecurity issues, standards, and certifications:
• Standards: ISO 27001, NIST CSF, CIS 20, SWIFT.
• Certifications: CISSP, ISO 27001 Lead Implementer/Lead Auditor, ISO 27005 Risk Manager, CISM, etc.
• Technical understanding of information systems, including networks and systems architecture.
• Proven ability to design structured approaches and communicate clearly with diverse stakeholders (management, IT, business, etc.).
• Fluent in French (C1-C2) and proficient in English (B1 minimum).
• Strong writing, analytical, and problem-solving skills.

Desired Attributes:

• Dynamic, creative, and proactive in tackling challenges.
• Independent with a team-player mindset.
• Enthusiastic about learning and staying updated on the latest cybersecurity trends.

Why Join Us?
We offer:

• Opportunities to work on exciting and challenging projects.
• A supportive environment for professional growth, including workshops, training, and events.
• A team that values collaboration and innovation.

If you are passionate about information security governance and eager to contribute to impactful projects, we would love to hear from you!

Benefits

• Télétravail
• Mutuelle d'entreprise
• Tickets restaurant
• Autres