Senior GRC / ISO 27001 Program Lead [Freelance]
Tasks
- Analyze risks for AI agents
- Collaborate with Cloud and Ops for security controls
- Collaborate with Finance for vendor risk
- Collaborate with HR for access management
- Collaborate with Legal DPO for GDPR alignment
- Collaborate with Product for security by design
- Conduct internal ISMS audits
- Conduct management reviews
- Coordinate security questionnaires for RFPs
- Create risk treatment plan
- Define certification roadmap
- Define risk mitigations and controls
- Develop statement of applicability
- Drive continuous improvement
- Implement ISMS policies and procedures
- Lead annual surveillance and renewal audits
- Lead security awareness and training
- Maintain risk register
- Manage audit cycle internal and certification audits
- Manage certification body selection
- Manage penetration tests
- Manage responses to third party audits
- Own ISO 27001 certification program
- Perform risk assessments for critical assets
- Run access reviews
- Run configuration reviews
- Track remediation plans
Perks/Benefits
Skills/Tech-stack
AI Act | AI RMF | Access Review | Audit management | Certification audit | EBIOS RM | GDPR | ISMS | ISO 27001 | ISO 27002 | ISO 27005 | ISO/IEC | ISO/IEC 42001 | Information Security Management | Information Security Management System | Information security | Management System | NIST AI | NIST AI RMF | NIST CSF | OWASP Top | OWASP Top 10 | OWASP Top 10 for LLM | Penetration Testing | Risk Assessment | Risk treatment | SOC 2 | SOC 2 Type 2 | Security Management System | Security awareness | Statement of Applicability | TCF v2.2 | Type 2)
Education
N/A
Related jobs
-
Consultant(e) Senior SOC & CERT – Pilotage de la Performance Cyber (H/F) - Cybersécurité - Toulouse EUR 48K-55KCybersecurity | EBIOS RM | EDR | Event Correlation | Incident ResponseCareer development opportunities | Employee Incentive Plan | Employee representative council | Health insurance | Meal vouchersSenior-level Full TimeColomiers, Occitanie, France R1d ago
-
Responsable Sécurité Produit EUR 50K-55KAccount Management | Asymmetric Cryptography | Code Signing | Cryptography | DNP3Senior-level Full TimeMontpellier, France1d ago
-
Active Directory | Active Directory Security | Application Security | CI/CD | CI/CD SecurityCareer development support | Certification support | Continuous training | Inclusive workplace supportMid-level Full TimePuteaux, IDF, France2d ago
-
IM/Cybersecurity Corporate Auditor (F/M) EUR 65K-75KAudit Reporting | CIS Controls | CISA | CISSP | COBITAdditional days off | E-learning courses | Employee savings plan | Employee stock purchase plan | Flexible working arrangementsMid-level Full TimeBlagnac - Wings Campus, France2d ago
-
IT and Cybersecurity Risk Manager EUR 50K-76KAI Governance | Business Continuity | Business Continuity Management | Change Management | Continuity managementMid-level Full TimeParis, France2d ago
-
Agile | CIS Controls | ICS | ISO 27001 | Information Security ManagementCareer growth | Cross-functional collaboration | Remote work options | Supportive work environment | Training and developmentEntry-level Apprenticeship Full TimeNeuilly Sur Seine, France R3d ago
-
Directeur de projet Sécurité IA Banque EUR 60K-70KAccess Management | Adversarial defense | Anonymization | Application Security | Cloud SecuritySenior-level Full TimeParis, IDF, France6d ago
-
Cybersecurity Manager EUR 55K-81KCybersecurity strategy | ISO 27001 | ISO 27002 | Incident Management | Information Security GovernanceMid-level Full TimeParis, IDF, France6d ago
-
Correspondant Sécurité des SI Groupe H/F EUR 55K-70KData Privacy | GRC | IAM | ISO 27001 | Incident ManagementFlexible working hours | Frequent international travel | Telework possibleSenior-level Full TimeEurope, France, Paris, Boulogne Edouard Vaillant R7d ago
-
Consultante - Consultant GRC EUR 40K-45KISO 27001 | ISO 27005 | Information Security Management | Information Security Management System | Information securityCareer development | Employee representative council benefits | Parental support | Partial vacation reimbursement | Professional equalityEntry-level Full TimeNantes, FR R8d ago
-
Community Management | Cyber Security | Data Analysis | English | FrenchEmployee savings plan | Employee stock purchase plan | Flexible working arrangements | Gym membership | Health insuranceEntry-level Apprenticeship Full TimeBlagnac - Wings Campus, France9d ago
-
Anssi | Crisis management | Cybersecurity | EBIOS RM | Homologation ManagementMid-level Full TimeLes Clayes-sous-Bois, FR9d ago
-
Consultante / Consultant Cybersécurité GRC EUR 31K-31KCrisis management | Governance Risk | Governance risk compliance | Incident Response | Information securityCareer coaching | Continuous learning | Flexible work schedule | Parental leave support | Partial vacation reimbursementEntry-level Full TimeMerignac, FR R13d ago
-
OT Cyber Security Manager EUR 45K-65KAWS | CIA triad | Cloud Security | Cloud platform | CybersecurityCareer development | Coaching | External training | Internal training | Team collaborationMid-level Full TimeParis, France (Hybrid) R15d ago
-
Cyber Security Compliance Lead EUR 60K-86KBy Design | CCPA | Compliance Management | Cyber Resilience | Cyber Resilience ActCorporate social events | Employee referral bonus | English classes | Health insurance | Insurance for serious illnessSenior-level Full TimeParis, Île-de-France, France15d ago
-
Anssi | Automation | Backup | Cybersecurity | Disaster RecoveryInternal mobility | Lunch vouchers | Paid time off | RTT days | Time savings accountMid-level Full TimeValenton, IDF, France16d ago
-
Rssi EUR 50K-60KBusiness Continuity | CAIQ | Disaster Recovery | ISO 27001 | Incident ManagementAutonomy | Flexible work | International environment | Multicultural team | Professional developmentMid-level Full TimeParis, France18d ago
-
Security Specialist - GRC (W/M/NB) EUR 60K-63K800-53 | Audit | CIS Controls | CRA | Cybersecurity PolicyGym | Healthcare | Paid time off | Profit sharingMid-level Full TimeParis, IDF, France21d ago
-
Anssi | Automation | Backup Management | Disaster Recovery | Document ControlInternal mobility | Meal tickets | Paid time off | RTT | Time savings accountEntry-level Full TimeValenton, IDF, France21d ago
-
Control Systems Security | Cybersecurity | Cybersecurity governance | IEC 62443 | ISO 27001Mid-level Full TimeSaint-Ouen, J, FR21d ago
-
IS Compliance Manager EUR 38K-55K800-53 | Audit planning | Continuous compliance | Control monitoring | DrataHybrid work | Learning mentorship programs | Life insurance | Medical coverage | Paid HolidaysMid-level Full TimeBoulogne-Billancourt, Île-de-France, France21d ago
-
Engineer Manager Security – Remote-First EUR 75K-85KAccess Management | Alerting | Authentication | By Design | CI/CDQuarterly in-person meetings | Remote-first work cultureSenior-level Full TimeParis, France R22d ago
-
Agile | Case Development | Cybersecurity | DCS | DNP3Mid-level Full TimeCourbevoie, IDF, France24d ago
-
Cybersécurité & GRC Internship (July 2025) EUR 14K-18KDue Diligence | Fraud Analysis | ISO 27001 | ISO 27001 2022 | Incident ResponseAnnual team building events | Free books | Hybrid remote work | Lunch vouchers | Paid vacationEntry-level InternshipParis28d ago
-
Global Security Officer - IT Security - F/H EUR 70K-80KAudit management | ISO 27001 | Information Security Management | Information Security Management System | Information securityMid-level Full TimeLes Clayes-sous-Bois, FR R28d ago