Compliance Engineer - Security & GRC

About UsAt Resilience, we are revolutionizing patient care in oncology, gastroenterology, and psychiatry by enhancing access to treatment and support throughout the patient journey. Our health applications are designed not only to improve patient lives but also to develop techniques and processes that minimize patient risks. Joining Resilience means contributing to a tangible mission within a scale-up environment where autonomy and impact are integral to our culture. Your RoleIn Brief:You will take ownership of our security compliance program (ISO 27001) within the QARA (Quality, Assurance & Regulatory Affairs) team.Your mission is to lead our Information Security Management System (ISMS) and ensure alignment with the existing quality management system (QMS). This role focuses on GRC/security compliance with a health sensitivity: you will interpret regulatory requirements related to security, collaborate closely with your colleagues and the Security Manager, while remaining deeply rooted in your expertise.Your Impact:You will drive Resilience's growth in regulated markets (healthcare, sensitive data) by ensuring our security posture and maintaining credibility with clients, partners, and authorities.Your Daily Responsibilities:Lead and automate the ISO 27001 ISMS: Full ownership of the ISO 27001 program integrated into the QMS — controls, risk register, policies, internal audits, corrective actions. Build and enhance automation workflows (Notion, AI agents, reporting) to remain audit-ready at all times.Interface between ISMS and medical device cybersecurity: Ensure coherence between ISMS and QMS, support cybersecurity requirements for medical devices (IEC 81001-5-1, IEC 62443, SBOM, MDR Annex I §17) in collaboration with the QARA team, contribute to technical files and audits on security aspects, assist with the security gap assessment for DiGA (BSI TR-03161), and maintain FDA cybersecurity monitoring.Prepare for new regulatory frameworks: Anticipate and translate NIS2, HIPAA, SOC2 requirements into pragmatic controls and concrete deliverables. Your TeamWe do not work in silos here. You will join an agile structure where compliance is truly a team sport:Your Manager: You will report to the Head of QARA, working collaboratively with diverse teams on compliance projects.Team Dynamics: Emphasis on open communication, shared goals, and a supportive environment to enhance compliance practices.

Join Ubisoft as a Security Specialist specializing in Governance, Risk, and Compliance (GRC). In this role, you will be instrumental in ensuring the security and compliance of our IT systems, contributing to the safeguarding of our digital assets and data.Your responsibilities will include developing and implementing security policies, conducting risk assessments, and collaborating with various teams to enhance our security posture. We are looking for someone who is proactive, detail-oriented, and passionate about cybersecurity.

We are seeking a talented and experienced Manager of Governance, Risk, and Compliance (GRC) to join our team in Paris. In this pivotal role, you will be responsible for overseeing the implementation and management of GRC frameworks, ensuring compliance with relevant regulations, and mitigating risks to our operations. You will work closely with cross-functional teams to promote a culture of compliance and risk awareness.

Talan is looking for a Consultant en Sécurité GRC (H/F) to support organizations in strengthening their governance, risk, and compliance processes. This position is based in Paris and centers on improving how companies protect sensitive data and manage security standards. Role overview This role focuses on working alongside internal teams to review and analyze existing security protocols. The Consultant will identify areas for improvement, propose actionable recommendations, and help put in place practices that align with industry standards. Key responsibilities Collaborate with teams to evaluate current governance, risk, and compliance measures Analyze security frameworks and identify potential vulnerabilities Recommend improvements to enhance protection of sensitive information Support the implementation of updated security practices Requirements Experience or strong interest in GRC (governance, risk, and compliance) and security Ability to work collaboratively with multiple teams Analytical mindset for reviewing and improving security protocols

Join Qonto as a GRC Engineer and play a crucial role in maintaining our governance, risk, and compliance framework. In this position, you will collaborate with cross-functional teams to ensure that our systems and processes align with regulatory requirements while managing risks effectively. Your expertise will help us to build a secure and compliant environment.

Join Accor as a Project Management Intern in our Security & Compliance team. This is an excellent opportunity for students and recent graduates to gain hands-on experience in a dynamic and global hospitality environment. You will assist in various projects aimed at enhancing our security protocols and ensuring compliance with industry standards.

Role overview airapps is hiring a Security Engineer based in Paris. This position centers on safeguarding the company’s digital assets and ensuring the integrity of its systems. The Security Engineer will play a key part in identifying risks, establishing protective measures, and shaping strategies to reduce security threats. What you will do Identify and evaluate security vulnerabilities throughout airapps systems Put technical safeguards in place to protect digital assets Create and improve strategies to prevent and address security threats

About TeadsTeads is a pioneering omnichannel advertising platform dedicated to optimizing outcomes for brand and performance advertisers across various screens. By harnessing the power of predictive AI technology, Teads connects quality media, stunning brand creatives, and context-driven addressability and measurement, ensuring meaningful business results. With direct partnerships with over 10,000 publishers and 20,000 advertisers globally, Teads is headquartered in New York City and boasts a diverse team of approximately 1,700 professionals across 30+ countries.For further details, please visit www.teads.com.Join us as a Senior Security Engineer to enhance security across our product and platform teams while also addressing internal corporate security needs. You will create significant impact through empowerment, automation, and effective risk management.

Join our innovative team at Pigment as a Senior Security Engineer. In this pivotal role, you will be responsible for safeguarding our systems and data against potential threats. You will design and implement robust security measures, conduct risk assessments, and respond to security incidents. Your expertise will help us maintain a secure environment while enabling our teams to innovate and grow.

Role overview The Senior Corporate Security Engineer at Nexthink plays a central role in protecting digital assets and ensuring the integrity of the corporate environment. The position involves hands-on security work and regular collaboration with teams throughout the company. Key responsibilities Partner with colleagues across departments to implement effective security measures. Conduct risk assessments to identify potential vulnerabilities and recommend solutions. Respond to security incidents and help coordinate the steps needed for resolution. Create and maintain security protocols and frameworks that align with industry standards. Location This position is based in Paris.

Join Malt as a Senior Engineering Manager specializing in Compliance, where you will lead a dynamic team to ensure adherence to regulatory standards and foster innovative engineering practices.

Join Us in Cultivating Cybersecurity Awareness! At tryriot, we are a product-driven team dedicated to enhancing the cybersecurity culture within organizations. Our goal is to embed effective cybersecurity practices among employees in a manner that is engaging and enjoyable—think of us as the Duolingo for cybersecurity!Our innovative platform facilitates the rollout of a comprehensive cybersecurity awareness program, delivering bite-sized chat-based courses lasting just four minutes to teams. Post-training, we conduct simulated phishing attacks to prepare employees for real-world threats in a controlled environment.Founded in 2020, tryriot has successfully secured $45 million in funding from top investors, including Y Combinator, Left Lane, Base10, Funders Club, and Frst Capital. We proudly safeguard over 2 million employees across more than 2,000 companies globally, including industry leaders like Intercom, Deel, and Deezer.As cybersecurity threats continue to escalate, it has become the foremost risk for organizations of all sizes. Unfortunately, the cybersecurity culture in many companies is lacking. We are determined to change this narrative by strengthening the weakest link—employee awareness.As the second security engineer in our dynamic organization, you will play a pivotal role in advancing our security governance strategy, risk management, and compliance initiatives. Our aim is to achieve ISO 27001 and ACN certification by 2026, and your expertise will be instrumental in driving our compliance efforts and transforming security into a catalyst for business growth.

Join us and thrive Network Security Engineer H/F CAPFI is a human-sized IT services company guided by genuine technological expertise and a strong culture of innovation. We offer a stimulating work environment, characterized by a variety of assignments and a human-centric approach. Trust, listening, and support are the core values of our Group, benefiting all employees. Our mission? To allow you to experience a collaborative journey that reflects your aspirations, enabling you to choose your professional trajectory, learning pace, and create the conditions necessary for your fulfillment. We believe that the diversity of profiles enriches our expertise; thus, we handle all applications equally, focusing solely on candidates' skills, irrespective of their origin, age, gender identity, disability, or religion. You are the right candidate if: You hold a Master’s degree and have at least 3 years of experience You specialize in IT Security technologies You recognize that IT Security is crucial today You are meticulous, passionate, curious, and persistent You possess a strong proficiency in English Your missions: As a Network Security Engineer, you will join a team of IT Security specialists at our clients' sites, working on topics such as: Internet access management Implementation of remote access solutions (VPN...) Securing perimeter access (Firewall, Proxy, Reverse Proxy, Load balancing, IDS/IPS, DLP, NAC, WAF...) Securing end-user devices (AV, EDR, HIDS, Micro-segmentation...) Mastery and understanding of cryptographic systems Technological watch Implementation of secure architectures Establishing security monitoring Patch management Validation of new solutions through POC Infrastructure migration

About UsAt CryptoNext Security, we are at the forefront of cybersecurity innovation, specializing in post-quantum cryptography solutions. Our mission is to safeguard the critical data of some of the world's largest enterprises and governments against the rising threats posed by quantum computing. As recognized leaders in our field, we collaborate with banks, security institutions, and government entities to deploy our state-of-the-art solutions through advanced technology projects. If you aspire to be part of a pioneering team and contribute to making the world a safer place, CryptoNext is the ideal environment to elevate your skills.Being a rapidly growing organization, we are constantly seeking visionary individuals who offer fresh perspectives, extensive technical expertise, and a genuine passion for cybersecurity. CryptoNext provides a vibrant workplace where talent converges with opportunity, and we are building a diverse pipeline of skilled and motivated professionals who may not find their ideal role advertised today but are eager to make a significant impact on our journey.Areas of Interest:We welcome speculative applications from talented individuals in the following fields: Cryptography & Research: In-depth knowledge of post-quantum cryptography, cryptographic protocols, algorithm design, and side-channel analysis. Software & Embedded Development: Proficiency in low-level software development, secure boot, protocols, hardware security modules (HSMs), and tools such as mbedTLS and cross-compilers. We are also seeking experienced developers well-versed in software architecture. Project Management & Service Delivery: Proven experience in managing technical deployments within complex client environments, preferably with a focus on security and cryptography. Product & Innovation: A passion for developing products that address real-world challenges, coupled with an aptitude for product strategy and user experience. Sales & Marketing for Cybersecurity: An ability to effectively translate technical innovations into client value and a commitment to fostering relationships in high-tech sectors.

At Kpler, we are committed to guiding our clients through the intricacies of global markets with confidence. By streamlining trade data and delivering actionable insights, we empower organizations to make informed decisions across the commodities, energy, and maritime sectors.Founded in 2014, Kpler has consistently focused on providing superior intelligence through innovative, user-friendly platforms. Our diverse team of over 700 specialists from more than 35 countries diligently transforms complex datasets into strategic insights, enabling our clients to excel in an ever-evolving market environment. Join us and harness cutting-edge innovations for impactful outcomes while enjoying exceptional support on your path to success.We are seeking a Director of Compliance to architect, implement, and expand a comprehensive global compliance framework that aligns with Kpler’s rapid growth trajectory. This pivotal role ensures that all Kpler entities operate with the highest ethical and legal standards across various jurisdictions. The Director of Compliance will spearhead our global compliance initiatives, mitigate potential risks, and cultivate a culture of integrity. This position involves close collaboration with the People, Finance, and cross-functional teams to integrate compliance into daily operations and decision-making. Additionally, the Director will lead and mentor a team of compliance specialists and paralegals.

CONTEXTThe objects and systems surrounding us are increasingly computerized and interconnected. This trend spans all sectors, particularly in transportation, where trains, connected cars, and even aircraft leverage standardized computing platforms to relay information for maintenance and passenger services. Similarly, consumer products such as televisions and smart locks are also becoming interconnected. However, this interconnectivity exposes these products to greater vulnerabilities against cyber threats.Within manufacturing companies, a new role has emerged: the Product Security Manager (PSM), responsible for overseeing product security, or Product Security Officers (PSOs), who ensure daily security compliance. These roles must integrate cybersecurity considerations into product development and maintenance after sale.To effectively fulfill their mission, PSMs and PSOs must navigate various sector-specific risks and adhere to an increasing number of laws, regulations, standards, and guidelines (e.g., IEC 62443, ANSSI security guide, NIST SP 800-82).INTERNSHIP OBJECTIVEThe primary goal of this internship is to create a comprehensive overview of the activities of PSMs and PSOs across various sectors (e.g., aviation, rail, maritime, consumer goods, medical). This overview will consider both sector-specific constraints and opportunities for enhancing security.ASSIGNED TASKSUnder the guidance of a consultant and management oversight, the intern will potentially undertake some or all of the following tasks:Conduct a benchmark of normative constraints per sector for PSMs.Develop a presentation on the activities of PSMs.Design a maturity assessment tool for PSMs.Perform a risk analysis for a specific product.

Role Overview sia is looking for a Compliance Manager in Paris to guide the company through regulatory requirements and internal policy standards. This role ensures operations stay aligned with legal obligations and ethical commitments. What You Will Do Monitor and interpret relevant regulations to keep company practices compliant Advise teams on legal standards and internal policies Help maintain sia’s reputation for integrity and trust

Role Overview sia is looking for a Compliance Consultant in Paris to help maintain high standards of regulatory and internal policy adherence. This role supports the company’s commitment to integrity and ethical conduct across all operations. What You Will Do Conduct compliance audits to assess adherence to regulations and internal policies Develop and refine compliance programs that support ongoing regulatory requirements Offer guidance on compliance issues to teams and leadership Promote a culture of integrity throughout the organization

Join Mistral as an Offensive Security Engineer and be at the forefront of cybersecurity innovation. In this role, you will leverage your skills to identify vulnerabilities in systems and applications, contributing to the overall security posture of our clients. You will work closely with cross-functional teams to design, implement, and execute penetration tests, ensuring the integrity and confidentiality of sensitive data.

Role Overview sia is looking for a Senior Compliance Consultant in Paris. This role focuses on helping clients meet regulatory requirements and industry standards. The consultant analyzes compliance frameworks, develops recommendations, and works closely with stakeholders to strengthen compliance programs. What You Will Do Assess existing compliance frameworks for clients Create strategic recommendations to address gaps or risks Collaborate with client teams and stakeholders to improve compliance processes Support efforts to reduce risk and achieve operational excellence Location This position is based in Paris.