Senior Consultant - Cybersecurity - GRC - M/F

Offer Presentation

Cybersecurity at PwC is above all an adventure. That of a team that has been built for over ten years, based on legitimacy acquired through constant effort in competence and relevance (whether technological or not), and an international strike force.

It also involves tailor-made approaches and tools to meet the needs of demanding but loyal clients. And it's a strong, committed, and benevolent collective, within which everyone can develop skills, initiatives, and a rich perspective on a complex subject.

We help our clients transform risk into a strategic advantage. We operate in various sectors (industries and services, banking/insurance, public sector) to co-build security, compliance, and resilience systems that last over time and support our clients in their transformation challenges.

As a Senior Consultant, you will play a key role in the development of GRC activity. You will be involved in:

1. Risk Analysis & Management

• Conduct risk analyses (EBIOS RM, ISO 27005, NIST RMF…): asset collection, definition of concrete attack scenarios, impact and likelihood assessment.
• Define & monitor indicators / KRIs: critical risks, trends, remediation follow-up.
• Challenge risk / cost / deadline trade-offs with business lines / IT departments / CISOs.

2. Compliance Implementation

• Perform compliance diagnostics and establish associated compliance plans (e.g., ISO 27001, DORA, NIS2, GDPR…).
• Pilot the implementation of corrective measures: setting up controls, formalizing procedures on key issues (risk management, vulnerability management, security incident management, etc.), collecting evidence, preparing and conducting internal audits.

3. Governance & Cyber Transformation

• Build or strengthen governance frameworks (security policies, roles & responsibilities, essential processes, committees, KPIs, and reporting).
• Define or deploy transformation plans: building the security roadmap, raising awareness and engaging employees, promoting a risk culture.
• Support security-business integration: ensuring cybersecurity is a decision-making lever, not a hindrance.

4. Delivery & Management

• Co-facilitate workshops and structure deliverables (scoping notes, presentations, risk matrices, security policies, dashboards, etc.).
• Present your recommendations to clients (CISOs, IT Directors, steering committee, business lines).
• Coaching junior consultants to support their skill development.

What we expect from you:

• 3 to 5 years minimum experience in GRC, security audit, compliance, cyber risk (ideally acquired in a consulting firm or a large group).
• Solid mastery of frameworks and regulations: ISO 27001 / 27005, DORA, NIS2, GDPR, ISO 22301, EBIOS RM, NIST CSF.
• Ability to quickly transition from a strategic to an operational vision.
• Good interpersonal skills, ease in exchanges with decision-makers, and persuasive power.
• Excellent written and oral communication, pedagogical sense, and leadership.
• Team spirit, autonomy, curiosity, taste for new or evolving subjects.
• Proficiency in English (C1 level recommended), essential in an international environment.

These benefits we offer

Work Environment and Flexibility

• Flexibility with the FlexWork charter: extended remote work, geographical mobility, FlexTime, Dress for your day.
• Crystal Park: 2-hectare private park, concierge, music room, gym, Café Joyeux.

Development

• International mobility and internal mobility after 12 months of seniority.
• New World. New Skills program to develop skills on tomorrow's challenges (ESG, technologies, diversity inclusion) and access to an on-demand training platform.

Commitment

• 3 days credit per year on working time for societal engagement missions.
• Sustainable mobility pass to cover your sustainable mobility expenses.

Health/Well-being

• Be Well, Work Well program to take care of your health (Gymlib partnership, United heroes application, sports associations, mindfulness training…).
• Family Care program to support you in your parenting projects as well as in difficult times.

And also: RTT, health insurance and provident fund, company restaurants and meal vouchers, Inter-Company Committee benefits…

All our offers are open to people with disabilities.