EXALT SHIELD

About the Company

eXalt Shield vous embarque pour une aventure cyber-securisee ! Renforcez votre defense numerique, boostez votre resilience et embrassez la conformite avec style.
Nous accompagnons nos clients sur l'ensemble des phases des projets : audit, pilotage et realisation de mises a niveau, amelioration continue et integration de la securite et de la conformite dans les nouveaux projets.

Les consultants d'eXalt Shield interviennent aupres des DSI, des RSSI, des Directeurs des Risques et de la Conformite ou dans les directions dediees a la gouvernance des donnees pour mener des projets de mise en conformite reglementaire (RGPD, HDS, PCI-DSS, EBA, DORA, AIA,...) et de production de garanties de securite (PAS, certifications ISO 27001, ISO 22301...).

Conscients que la cybersecurite et la conformite participent a la creation d'une societe numerique de confiance, nos consultants promeuvent et diffusent chez nos clients les bonnes pratiques de l'ethique du numerique.

Listed Jobs

Company Name

EXALT SHIELD

Job Title

Cybersecurity Governance Officer F/H

Job Description

**Job Title:** Cybersecurity Governance Officer **Role Summary:** Responsible for developing and maintaining security policies, ensuring compliance with ISO 27001, GDPR and other regulations, managing cyber risk assessments, driving awareness programs, monitoring security KPIs, and coordinating governance activities across IT, legal and external partners to support operational resilience. **Expectations:** - Minimum 2 years of professional experience in cybersecurity (excluding internships). - Proven ability to work independently and collaboratively in a fast‑changing environment. - Strong written and verbal communication in English; capable of leading meetings and producing reports in English. - Demonstrated rigor, organization, and adaptability. **Key Responsibilities:** - Define, update, and enforce security policies (ISO 27001, GDPR) and ensure alignment with internal and regulatory requirements. - Conduct cyber risk identification, evaluation, and tracking; recommend corrective actions and oversee remediation plans. - Design and deliver security awareness and training campaigns to promote a cyber‑secure culture. - Monitor security KPIs, generate regular reports for senior management, and manage incident follow‑up. - Coordinate governance activities with IT, legal, and third‑party stakeholders to implement controls and secure data exchanges. - Contribute to Business Continuity (BCP) and Disaster Recovery (DR) planning, testing, and improvement. **Required Skills:** - In‑depth knowledge of cybersecurity principles, risk management frameworks (EBIOS, ISO 27005) and compliance standards. - Proficiency in drafting and presenting policy documents, risk reports, and training materials. - Strong analytical and problem‑solving abilities. - Excellent interpersonal and pedagogical skills for stakeholder engagement. - Ability to work in multilingual, multicultural settings. **Required Education & Certifications:** - Master’s degree (Bac +5) in Computer Engineering, Cybersecurity, or a related field. - Preferred certifications: ISO 27001 Lead Implementer/Lead Auditor, ISO 27005 Risk Manager, or EBIOS Risk Manager. - Professional level English proficiency (CEFR C1 or equivalent).

Paris, France

On site

15-10-2025

Company Name

EXALT SHIELD

Job Title

Cybersecurity Governance Officer (H/F)

Job Description

Paris, France

On site

Junior

22-10-2025

Company Name

EXALT SHIELD

Job Title

Responsable continuité d'activité cybersécurité F/H

Job Description

Job title: Cybersecurity Business Continuity Manager (F/M) Role Summary Lead the design, implementation, and ongoing improvement of Business Continuity (BC) and Disaster Recovery plans with a strong cybersecurity focus, ensuring organizational resilience against cyber‑attack and critical service disruptions. Coordinate BC/PCR activities across IT, operations, risk, and security functions, and maintain compliance with applicable standards and regulations. Expectations * Deliver integration of BC/DR strategies into broader cyber‑resilience frameworks. * Drive continuous testing, exercise, and improvement cycles. * Establish governance structures, KPI/KRI monitoring, and executive reporting. * Maintain up‑to‑date knowledge of ISO 22301, ISO 27031, DORA, NIS2, and related cyber‑security frameworks. Key Responsibilities 1. Design, document, and maintain BC/DR plans aligned with ISO 22301 and ISO 27031. 2. Conduct Business Impact Analyses (BIA) and operational risk assessments. 3. Identify cyber‑threat scenarios, develop mitigation strategies per critical services. 4. Plan, execute, and debrief tabletop, readiness, and full‑scale tests; drive corrective action. 5. Collaborate with cyber‑security teams to embed BC in incident response, ransomware, and emerging threat campaigns. 6. Develop internal and external crisis communication plans. 7. Define resilience KPIs/KRIs and report to senior management. 8. Ensure compliance with DORA, NIS2, ISO 27001, LPM, GDPR, and other regulatory requirements. 9. Lead governance committees, audits, and vendor assessments related to BC. 10. Promote continuous improvement through industry best‑practice monitoring, training, and awareness initiatives. Required Skills * Proven expertise in BC/DR planning (PCA/PRA) and crisis management. * Deep understanding of ISO 22301, ISO 27031, ISO 27001, ISO 27005, EBIOS, NIST CSF, and DORA. * Experience designing and testing BC exercises; documenting lessons learned. * Strong analytical, problem‑solving, and project‑management abilities. * Excellent written and verbal communication; ability to educate and influence stakeholders. * Proficient in English (written and spoken). * Familiarity with cyber‑security incident response and resilience concepts. Required Education & Certifications * Bachelor’s or Master’s degree (Bac + 5) in Cybersecurity, Information Technology, Risk Management, or a related field. * Minimum 4 years of BC/PRA, BIA, and crisis‑management experience. * Certification preferred: ISO 22301 Lead Implementer, CBCI, or equivalent. ---

Paris, France

Hybrid

Junior

19-11-2025

Company Name

EXALT SHIELD

Job Title

Consultant ISP - Intégration Sécurité dans les Projets

Job Description

**Job Title** ISP Security Integration Consultant **Role Summary** Drive the systematic inclusion of cybersecurity throughout project lifecycles, ensuring risk-informed design, compliance, and continuous improvement. Collaborate with project, Agile, and governance teams to embed Security‑by‑Design principles and deliver resilient digital transformations. **Expectations** - Demonstrated expertise in cyber risk analysis and ISP methodologies (ISO 27005, EBIOS RM, NIST CSF). - Proficiency in integrating security into Agile/SAFe workflows and cloud architectures. - Ability to communicate complex security concepts clearly to technical and non‑technical stakeholders. - Commitment to ongoing monitoring, KPI reporting, and remediation planning for sustained security posture. **Key Responsibilities** - Conduct cyber risk assessments and threat‑mapping using ISO 27005, EBIOS RM, and NIST CSF frameworks. - Incorporate Security‑by‑Design into project plans, architecture, and deliverables. - Produce security studies, architectural recommendations, and remediation action plans. - Mentor Agile/SAFe teams on cyber‑security best practices and governance requirements. - Define, track, and report security KPIs to steering committees and executive sponsors. - Maintain and update security documentation, threat models, and risk registers. **Required Skills** - Advanced knowledge of ISO 27001/27005, EBIOS RM, NIST CSF, and related risk frameworks. - Experience with cloud security across AWS, Azure, and GCP environments. - Strong understanding of Security‑by‑Design architecture and secure application development. - Familiarity with regulatory requirements such as NIS2, DORA, and LPM. - Excellent written and oral communication, including facilitation and training. - Analytical mindset with the ability to synthesize complex information into actionable insights. - Fluent in English (written and spoken). **Required Education & Certifications** - Bachelor’s degree in Computer Science, Information Security, or related field (advanced degree preferred). - Professional certifications highly regarded: ISO 27001 Lead Implementer, CRISC, CISSP, or equivalent.

Île-de-france, France

On site

Junior

01-12-2025