Senior GRC Consultant

3 Minutes ago • 5 Years +

Job Summary

Job Description

Join the GRC (Governance Risk and Compliance) team, composed of about forty people, and work directly with clients on various missions in France and abroad, particularly in the field of IT system accreditation support. You will also be involved in Cyber risk management, strategic cybersecurity consulting, governance, compliance, and the cyber impact of innovations such as AI or quantum technologies.
Must have:
  • Assist clients in setting up and managing Accreditation Commissions and compiling accreditation files.
  • Identify risks using formal risk analysis methods (EBIOS RM, ISO27005...).
  • Organize risk prevention by defining policy, standards, security strategy, and the business continuity plan.
  • Deploy protections (security process management, solution development, security integration into projects, SMSI deployment).
  • Knowledge of main frameworks (NIST, ISO, RGS) and regulations (NIS2, RGPD, DORA).
  • Conduct maturity and/or compliance audits.
  • Inform, measure, and communicate (awareness, steering committees, dashboards).
  • Supervise consultants on these missions (depending on experience).
  • Ensure quality of deliverables, adherence to deadlines, and client satisfaction.
  • Contribute to offer development, commercial proposals, standards, and knowledge management.
  • At least 5 years of experience as a GRC cybersecurity consultant.
  • Experience with EBIOS RM, MEHARI, NIST, ISO 2700x, RGS.
Good to have:
  • Curiosity
  • Good interpersonal skills
  • Strong communication skills
  • Ability to travel in France and internationally
Perks:
  • Attractive compensation package
  • Continuous skills development: training programs, internal academies and communities
  • Inclusive, benevolent environment respecting employee balance
  • Recognized societal and environmental commitment
  • Career evolution opportunities
  • Training and certification programs

Job Details

Location: Helios, France

Let's build a future of trust together

Thales is a global leader in high technology specializing in three sectors: Defense & Security, Aerospace & Space, and Cyber & Digital. It develops products and solutions that contribute to a safer, more environmentally friendly, and more inclusive world. The Group invests nearly 4 billion euros per year in Research & Development, particularly in key innovation areas such as AI, cybersecurity, quantum, cloud technologies, and 6G. Thales has nearly 81,000 employees in 68 countries.

Our commitments, your benefits

  • Success driven by our technological excellence, your experience, and our shared ambition
  • An attractive compensation package
  • Continuous skills development: training programs, internal academies, and communities
  • An inclusive, benevolent environment that respects employee work-life balance
  • Recognized societal and environmental commitment

Your daily life

Join us on the Vélizy campus, which hosts a wide variety of Thales activities: aerospace, defense, civil, etc. West of Paris, this site offers a work environment equipped with the latest technological innovations and provides services to reconcile professional and personal life.

Within Thales, our Thales Cyber Solutions teams provide a wide range of cybersecurity services, from cyber governance to specialized technical expertise, as well as incident detection and response services delivered from our SOCs, forensic analysis, and threat intelligence. Our clients are large groups, OIVs (Operators of Vital Importance), OSEs (Operators of Essential Services) needing to protect critical IT or OT systems, or governmental organizations.

Integrated into the GRC (Governance Risk and Compliance) team, composed of about forty people, and in direct relation with our clients, you will be responsible for varied missions in France and abroad, particularly in the field of IT system accreditation support.

You will also be involved in Cyber risk management, strategic cybersecurity consulting, governance, compliance, and the cyber impact of innovations such as AI or quantum technologies.

Your main missions:

  • You help clients set up and manage Accreditation Commissions and compile accreditation files.
  • You identify risks using formal risk analysis methods (EBIOS RM, ISO27005...).
  • You organize risk prevention by defining policy, standards, security strategy, and the business continuity plan.
  • You deploy protections (security process management, solution development, security integration into projects, SMSI deployment).
  • You are familiar with the main frameworks (NIST, ISO, RGS, ...) and regulations (NIS2, RGPD, DORA, ...).
  • You conduct maturity and/or compliance audits.
  • You are responsible for informing, measuring, and communicating (awareness, steering committees, dashboards).
  • Depending on your experience, you may be required to supervise consultants working on these missions.
  • You guarantee the quality of deliverables, adherence to deadlines, and client satisfaction.
  • You contribute to the development of offers, commercial proposals, standards, and knowledge management for the Consulting team.

Your profile

A graduate of higher education (engineer or equivalent), you have at least 5 years of experience as a GRC cybersecurity consultant.

You have experience in:

  • risk analysis methods (EBIOS RM, MEHARI)
  • security frameworks (NIST, ISO 2700x, RGS)
  • organization of risk prevention and cybersecurity strategy
  • deployment of protections and security process management

Your proficiency in English, both oral and written, your curiosity, your good interpersonal skills, and your communication skills are recognized assets?

Then this position is for you!

You will also have the opportunity to travel in France and internationally as part of your missions!

To offer you numerous career development opportunities within our teams and within the Thales group, you will benefit from our training and certification program.

Innovation, passion, ambition: join Thales and let's build a future of trust together!

Thales, a Handi-Engaged company, recognizes all talents. Diversity is our best asset. Apply and join us!

As the position may require access to information relating to national defense secrecy, the selected person will be subject to an authorization procedure, in accordance with the provisions of articles R.2311-1 et seq. of the Defense Code and IGI 1300 SGDSN/PSE of August 9, 2021.

Similar Jobs

Looks like we're out of matches

Set up an alert and we'll send you similar jobs the moment they appear!

Similar Skill Jobs

Looks like we're out of matches

Set up an alert and we'll send you similar jobs the moment they appear!

Jobs in Vélizy-Villacoublay, Île-de-France, France

Looks like we're out of matches

Set up an alert and we'll send you similar jobs the moment they appear!

Similar Category Jobs

Looks like we're out of matches

Set up an alert and we'll send you similar jobs the moment they appear!

About The Company

Ottawa, Ontario, Canada (Hybrid)

Crawley, England, United Kingdom (On-Site)

Prague, Prague, Czechia (On-Site)

Meudon, Île-de-France, France (Hybrid)

Noisy-le-Grand, Île-de-France, France (Hybrid)

Plano, Texas, United States (Hybrid)

Brazil (On-Site)

São Bernardo Do Campo, State Of São Paulo, Brazil (Hybrid)

Vélizy-Villacoublay, Île-de-France, France (On-Site)

View All Jobs

Get notified when new jobs are added by Thales

Level Up Your Career in Game Development!

Transform Your Passion into Profession with Our Comprehensive Courses for Aspiring Game Developers.

Job Common Plug