cover image
RECIPROC-IT

RECIPROC-IT

reciproc-it.com

1 Job

7 Employees

About the Company

Reciproc-it is an Information Security System Consulting Firm.
Our main activities are based on giving guidance to protect the data and information, by ensuring their integrity, confidentiality, availability and auditability

It’s also a matter of helping our customers in managing and processing their IT projects in well framed way by using the adequate methodology

Listed Jobs

Company background Company brand
Company Name
RECIPROC-IT
Job Title
Consultant(e) / Analyste en Gestion des Risques & Conformité Sécurité
Job Description
**Job Title** Consultant / Analyst – Information Security Risk & Compliance **Role Summary** Provide client‑focused risk assessment, security architecture translation, and compliance implementation services. Manage end‑to‑end security risk lifecycle and align it with industry standards and EU regulatory frameworks. **Expectations** - Deliver measurable risk mitigation plans that meet clients' business objectives. - Communicate complex security concepts to non‑technical stakeholders. - Adapt solutions to diverse regulatory requirements and sectoral contexts. **Key Responsibilities** - Conduct risk analyses for information systems, organizational métiers, projects, and suppliers. - Translate business needs into concrete, enforceable security requirements. - Facilitate threat‑identification and business‑impact workshops. - Build and maintain risk maps, registers, and treatment plans (reduce, transfer, accept, avoid). - Ensure regulatory and normative compliance (ISO/IEC 27001/27002, DORA, NIS2, GDPR security, sector‑specific standards). - Formalise and monitor operational security procedures. - Support clients in achieving and sustaining compliance with applicable frameworks. **Required Skills** - Mastery of risk‑analysis methodologies (EBIOS‑RM, ISO 27005 or equivalent). - Strong understanding of IT architectures and cybersecurity fundamentals: IAM, network security, encryption, log management, and incident response. - Deep knowledge of ISO 27001/27002, NIST frameworks, and EU regulations (DORA, NIS2, GDPR). - Excellent facilitation and communication abilities. - Analytical mindset with an ability to translate business context into technical controls. **Required Education & Certifications** - Bachelor’s degree in Information Security, Computer Science, or related field. - Professional certifications in risk management or information security (e.g., ISO 27005 Lead Practitioner, EBIOS Master, ISO 27001 Lead Implementer/Lead Auditor). - Current knowledge of ISO 27001/27002 and NIST standards; ongoing professional development in EU regulatory frameworks.
Paris, France
Hybrid
11-02-2026