Junior Cyber Security and Risk Management Consultant

Full-time - Paris La Défense

Why work at C-Risk?

C-Risk is a start-up and a European leader in consulting, outsourced services and training on the financial quantification of cyber risks (CRQ). We help organizations understand and measure cyber risks in financial terms to improve information security governance and increase their cyber resilience. In addition to this, you need to know more about it.

The quantification of cyber risks is becoming an essential asset to improve decision-making on investments in security controls. Joining the C-Risk team is an opportunity to work in an organization passionate about Cyber ​​Risk Quantification (CRQ) and which aims to become the European leader in this exciting new field.

Our team is international and multicultural. We appreciate employees who are curious, attentive, very autonomous and ready to adapt easily in the context of our rapid growth.

You wantto apply ?

Job Description

We are looking for a junior cyber security and risk management consultant to contribute to cyber risk assessments and quantification projects across the European region.

You are fluent in English and your primary role is supporting senior consultants to provide the best service to our customers.

Our services focus on

  • Measuring cyber security posture using automated tools such as cyber rating platforms
  • Assessing the level of compliance with standards, regulations and control frameworks such as ISO27001, NIST, GDPR, and PCI-DSS
  • Quantifying risks in financial terms using the FAIR framework
  • Providing a roadmap to increase cyber resilience using the output of a CRQ analysis and a control assessment
  • We assess both our clients own risk posture and that of their 3rd parties.

Your role

Your role will include supporting various types of consulting services

  • Risk assessments, security scoring reports and compliance reviews
  • Assist in the development of customer presentations
  • Participate in project scoping and reporting Produce deliverables and present results to customer.
  • Using scoring and quantification Software platforms (onboarding, configuration, running scenarios etc..)

We will provide extensive training on the FAIR CRQ framework and the corresponding software platforms which we use to deliver our services.

Required skills

  • University Degree ideally with a specialisation in computer science, business, economics and/or IT Security.
  • You have 1 to 3 years of experience, with a keen interest in becoming consultant in IT security and / or cyber risk management.
  • You are comfortable working with both cyber security controls and measurement of the financial impact of incidents. In other words you are interested in both controls (technical or business process) and the business impact of cyber security.

Skills :

  • Exposure to Risk management concepts and standards such as ISO 31000, 2700X, FAIR, EBIOS or equivalent
  • Exposure to GDPR and associated data Privacy controls
  • Ability to quickly learn and understand terminology and processes specific to cyber risk management
  • Comfortable with financial models and basic statistics. You can build and maintain excel models of a medium level of complexity
  • You have strong written and visual communications skills. You are capable of understanding a complex scenario, documenting it in detail and also providing a concise summary. You enjoy creating visual documents using tools such as PowerPoint.

You are motivated to obtain an information security certification such as CISSP, CRISC, CISM, or CISA.

You are self-driven and work well with minimum supervision. You have a critical and analytic mind allowing you to quickly understand customer issues and to produce quality deliverables.

Excellent verbal and written communicator, you are bilingual French / English and you have excellent interpersonal skills. You will have studied or worked for at least 2 years in an English-speaking environment. We will consider certain candidates who do not speak fluent French but are native English speakers.

Fill out this form to apply

We study each of the applications we receive and get back to you as soon as possible.