Devoteam | Cyber Trust

www.devoteam.com

1 Job

340 Employees

About the Company

Devoteam Cyber Trust is the cybersecurity specialist arm of the Devoteam Group. With our 1000+ experts located across EMEA, Encompassing a range of cybersecurity services from GRC and Digital Identity through to managed security. Cyber Trust guides organisations securely in the AI Age. Ensuring the right balance between embracing innovation and achieving both protection and operational efficiency for our customers.

Listed Jobs

Company Name: Devoteam | Cyber Trust
Job Title: Consultant en Cybersécurité – Compliance/Risk Analyst - MARSEILLE (F/H)
Job Description: Job Title: Cybersecurity Consultant – Compliance / Risk Analyst Role Summary: Provide expertise in cybersecurity compliance, risk, and resilience across cloud and on‑premises environments. Advise clients on data protection, audit, and security practices, ensuring alignment with ISO, NIST, COBIT, SOX, and CSA frameworks. Act as a trusted advisor in designing, implementing, and maintaining security controls with a focus on audit readiness and risk mitigation. Expectations: – Minimum 2 years of consulting or similar experience in cybersecurity compliance or risk analysis. – Strong service orientation with the ability to manage senior client expectations. – Excellent written and verbal communication in English; additional languages are desirable. – Demonstrated ability to work collaboratively in multidisciplinary teams and adapt to complex projects. Key Responsibilities: 1. Conduct security gap analyses and risk assessments (EBIOS, ISO 27005, etc.) for clients’ IT systems. 2. Develop and review policies, procedures, and controls to meet ISO 27001/27002, NIST, COBIT, SOX, PASSI, SANS, CSA, and CIS standards. 3. Support clients in preparing for external audits (ISO, SOC, PCI, etc.) and internal security audits. 4. Advise on security architecture for cloud platforms (AWS, Google Cloud, Microsoft Azure, Salesforce, ServiceNow). 5. Draft audit reports, risk treatment plans, and remediation roadmaps. 6. Deliver workshops and training sessions on security best practices and regulatory requirements. Required Skills: – Proficiency in ISO 27001/27002, NIST, COBIT, SOX, PASSI, SANS, CSA, CIS frameworks. – Experience with risk assessment methods (EBIOS, ISO 27005, etc.). – Knowledge of IT system organization, network security, cloud security, and encryption. – Strong analytical, problem‑solving, and documentation skills. – Adept at stakeholder management and client communication. – Fluency in English; additional language skills are an asset. Required Education & Certifications: – Graduate of an engineering school, Master 2 in Computer Science, or equivalent specialization in Information Systems Audit. – Relevant professional certifications (e.g., CISSP, CISM, ISO 27001 Lead Implementer, NIST Cybersecurity Framework, or equivalent) are preferred.