Cybersecurity Consultant M/F

Description

Summary: Join a leading independent consulting firm to enhance cybersecurity and risk assessment within a major Luxury Group's projects, ensuring compliance and promoting Security by Design. Highlights: 1. Shape the future with an innovative, responsible, and entrepreneurial firm 2. Engage in diverse and stimulating missions within cutting-edge projects 3. Benefit from a convivial atmosphere and strong employee proximity Localisation : **Localisation****Porto, Portugal**Contrat : **Type de contrat****CDI**Description * mc2i is an **independent consulting firm** that supports its large corporate clients in their digital transformation projects. * For over **35 years**, we have operated across **diverse sectors and domains**: Human Resources, Energy & Utilities, Transport, Banking, Finance & Insurance, Retail & Luxury, Media & Telecoms, Marketing and Customer Experience, Public Services, Cybersecurity, Data/AI, Infrastructure, UX/UI Design, Management and Organization. * We are **recognized for our entrepreneurial approach**, **our spirit of innovation**, and **our commitment to more responsible digital practices**. * With over **1,600 employees**, mc2i has preserved a **convivial atmosphere and close proximity with its staff**. **For over 20 years, we have maintained double-digit growth — a testament to the excellence of our services.** To sustain this momentum, we are seeking new talent, recruited exclusively on profile, who will help shape the future alongside us. **Job Description:** -------------------------- Within the Cybersecurity Department of a major Luxury Group, the Security Integration in Projects (ISP) team ensures that security requirements are proactively and effectively embedded across all IT projects within the Group. The ISP acts as a key player in the cybersecurity framework in order to: * Reduce exposure to cyber risks * Ensure regulatory compliance * Enforce internal security standards * Promote a strong Security by Design culture The objective of this mission is to act as a Risk Assessor within the ISP team, contributing to all activities within the scope, in close collaboration with project teams, business stakeholders, cybersecurity teams, and design functions (architecture, privacy). **Main Activities:** * Security integration from project initiation: participation in Kick\-Off Meetings, project criticality assessment, identification of security stakes, and triggering of required analyses. * Risk analysis and treatment: execution of Business Impact Analysis (BIA) and CATIS, identification of threat scenarios, risk evaluation (custom methodology aligned with ISO 27005 \& EBIOS RM), definition and follow\-up of mitigation measures. * Pentest coordination and follow\-up: planning and coordination with external providers, analysis of test reports, and monitoring of vulnerability remediation. * Validation of new applications/tools: risk assessment, compliance verification against internal standards, definition of compensating controls where needed, and issuance of formal security opinions. * Technical architecture challenge: security review of proposed architectures (network segmentation, IAM, encryption, APIs, logging, interconnections) and formulation of recommendations prior to production go\-live. **Your Profile:** ------------------ **Confirmed to Senior Profile** (minimum 4 years of experience) with **strong expertise in cybersecurity** and risk assessment activities. **Technical skills:** * Strong knowledge of Information Security principles * Risk analysis expertise (ISO 27005 / EBIOS RM aligned) * Blueteam and security control expertise * Architecture security (on\-premise and cloud environments) * Application security * Network and Infrastructure security * Vulnerability management * Understanding of modern IT environments * Expertise in AI, Cloud security, payment systems security would be highly appreciated * Project environments include: AS400, Headless architectures, SAP, data platforms, new retail points of sale, Cloud AWS, Azure, GCP, Alibaba, Salesforce * Certifications could be an advantage: CCSP, ISO27001, CISA, CRISC, CEH, CISSP, CCNA Cisco,... * Optional: Redteam culture or experience **Soft Skills** * Ability to challenge stakeholders diplomatically * Strong analytical and structured mindset * Leadership capabilities * Strong synthesis and reporting skills * High level of autonomy * Proactive and solution\-oriented mindset **Languages** * **English: mandatory** * French: recommended We value diversity and inclusion. Every voice matters, and we encourage applications from all backgrounds. All our offers are open to people with disabilities. **Apply with one click?** --------------------------- * Ranked 3rd in the Great Place to Work 2025 awards, mc2i is a great place to live and work. * Proximity management is a priority at mc2i, with one manager for every five consultants. * At mc2i, all employees are in control of their professional journey and build the career that suits them best. * As an independent firm 100% owned by its management, employees joining our Senior Management have the opportunity to invest in the company's capital and take part in the adventure. * A presence in France, Belgium, and Portugal To learn about our recruitment process, click here. A Talent Acquisition Consultant will support you throughout your candidate journey. You will also have the opportunity to attend coaching sessions to prepare effectively. At mc2i, promoting diversity and combating all forms of discrimination are long-term commitments. Our commitment to diversity and inclusion is reflected, notably, by special attention to the integration of persons with disabilities. We encourage their applications and commit to providing necessary accommodations throughout their experience at mc2i. By joining us, you become part of a team where every individual counts and every voice is heard. As a signatory of the Diversity Charter, we strongly encourage applications from all backgrounds and look forward to receiving yours. Join mc2i and let’s build together a more innovative and responsible digital future! ️ **Social Benefits** ------------------------- * **100% covered public transport pass** * **Social and Economic Committee (CSE)** * **Meal vouchers card** * **Employee share ownership** * **Health insurance and supplementary coverage** * **Parental benefits** ### **Life at mc2i** Our values of conviviality and proximity make our firm an accelerator of initiatives, sharing, and innovation. With an average age of 29, we have increasingly motivated and engaged teams committed to their missions. Each of our employees is ready to share their expertise. We offer varied and stimulating assignments that allow involvement in innovative projects and contribution to shaping tomorrow’s world. ### **Our application tips** Our candidate journey is designed to deliver the best possible experience while reflecting the firm’s core values: curiosity, benevolence, commitment, and freedom. Recruitment interviews are genuine motivational exchanges — no case studies are required. We prioritize dialogue around candidate expectations, feedback on past experiences, and an introduction to mc2i.