Cybersecurity Consultant at Wavestone | Paris

As a member of our Cybersecurity practice, which boasts over 600 professionals, you will play a crucial role in our international development while assisting more than 1,000 clients annually across various domains:/Governance and security organization, awareness and training, compliance (GDPR, LPM, NIS), cybersecurity strategy, risk management./Cloud securit…

Context Wavestone's cybersecurity practice is dedicated to guiding clients through the implementation of their Digital Identity transformation projects. Digital identity is a critical pillar for managing cyber risks and is essential for executing a successful Zero Trust strategy (a security model where no user or device is inherently trusted, and access must be continuously verified). Identity Governance and Administration (IGA) represents a key aspect of digital identity management within organizations, defining who can access information systems (identities) and what access rights they possess (permissions), ensuring users have only the necessary rights. IGA projects typically involve large-scale transformations and encompass multiple dimensions: • An organizational dimension to identify the stakeholders responsible for identity management and permissions, and to support these stakeholders in their roles. • A process dimension to establish identity and permission management processes throughout their lifecycle in the organization. • A technical dimension to implement tools that support these processes. • A data dimension to collect, analyze, and prepare data for use in the processes and tools. The projects we undertake with our clients in this area may take various forms, including auditing their current solutions, framing their future projects, providing expertise on specialized topics, managing their transformation project, and deploying their new tools. Objective The purpose of this internship is to enhance Wavestone's knowledge and expertise in Identity Governance and Administration. This includes: • Understanding regulatory developments, • Analyzing new business challenges (e.g., opening information systems to partners, managing bots), new offerings in the IGA solutions market, and modern project management and change management approaches, • Mastering the technological tools involved. Tasks Under the guidance of a consultant and the supervision of a manager, the intern may be tasked with carrying out part or all of the following: • Conducting studies on new challenges and approaches, • Developing benchmarks of IGA functionalities from market solutions, • Creating Proof of Concepts (PoCs) or mock-ups of market solutions (small tests or prototypes to evaluate existing tools), • Developing accelerators or tactical tools...

ContextThe Cybersecurity Practice at Wavestone supports clients in implementing their Digital Identity transformation projects. Identity management is a crucial pillar for controlling cyber risks and is key to successfully executing a Zero Trust strategy (a security principle where no user or device is inherently trusted, and access must be continuously verified).Our projects in this area vary, including audits of current solutions, outlining future projects, and providing expert assistance on specialized topics. They encompass technical dimensions (proficiency with solutions, understanding of regulations, data analysis), business aspects (comprehension of information system usage), and human factors (change management).The Identity Analytics & Intelligence (IAI) segment focuses on creating a

Join Wavestone as an intern or apprentice and gain valuable experience by participating in our dynamic career fairs. This opportunity will allow you to connect with industry professionals, enhance your networking skills, and explore various career paths in a vibrant environment.

Role overview sia seeks an experienced Cybersecurity Consultant based in Paris. This position centers on guiding clients as they protect their systems from evolving security threats. The work combines technical analysis with the need to communicate risks and solutions clearly to a variety of audiences. What you will do Evaluate client systems to identify security vulnerabilities and risks Develop security architectures that align with industry standards and regulatory guidelines Apply security measures to reinforce client defenses Explain complex technical topics in straightforward terms for non-technical stakeholders About sia sia partners with organizations in multiple sectors to provide practical cybersecurity solutions. The team emphasizes strong technical skills, clear communication, and a proactive approach to addressing new security challenges.

Role overview sia is seeking a Senior Cybersecurity Consultant based in Paris. This position centers on safeguarding clients’ digital assets while helping them navigate complex security challenges. The work balances strategic planning with practical implementation to improve security in a range of technical environments. Key responsibilities Advise clients on effective cybersecurity strategies and industry best practices Carry out risk assessments to uncover vulnerabilities Develop and apply security measures tailored to each client’s requirements Collaborate with a team dedicated to creating secure digital solutions Collaboration This role involves close partnership with skilled professionals who prioritize security and adapt to changes in the digital landscape.

Join our innovative team at sia as a Junior Cybersecurity Consultant, where you will play a crucial role in safeguarding our clients' digital assets. In this position, you will assist in developing robust cybersecurity strategies and solutions while gaining hands-on experience in a fast-paced environment. This is an excellent opportunity for recent graduates or those looking to launch their careers in cybersecurity.

Join Meritis as a Cybersecurity Consultant, where you will play a pivotal role in safeguarding our clients' digital assets. Your expertise will help in identifying vulnerabilities and implementing robust security measures to protect sensitive information. Collaborate with a dynamic team of professionals and leverage cutting-edge technologies to enhance security protocols and ensure compliance with industry standards.

Your mission: protect, advise, impactAre you passionate about cybersecurity and possess extensive consulting experience? Do you enjoy leading strategic projects, supporting large-scale clients, and nurturing a team? With us, you won’t just be a Consultant, but a key change agent in an ever-evolving digital landscape. What you'll doAs a Senior Cybersecurity Consultant, you will play a pivotal role in defining and implementing cybersecurity strategies for our clients, both in France and internationally. Specifically, you will:Lead and execute strategic consulting missions: master plans, audits, compliance (ISO 27001, NIS 2, LPM…), support for CISOs, risk analysis (EBIOS RM)…Develop and mentor teams, sharing your expertise and contributing to their skill enhancement.Participate in the evolution of our offerings and challenge our methods to stay at the cutting edge.Engage in crisis management and cyber resilience, facilitating exercises and defining continuity plans (PCA/PRA).Support key technology projects in OT & IoT cybersecurity, cloud migration, and securing critical information systems.Represent our expertise to clients and contribute to the development of the Paris office, both commercially and operationally. Your future challengesYour daily routine will be filled with exciting and diverse projects:Design and lead a cybersecurity master plan for a major industrial group.Reassess the security policy of a global retail leader.Assist a hospital center in achieving HDS compliance.Analyze the risks of a massive cloud migration.Create and lead a training plan for a unicorn in the healthcare sector.Organize a cyber crisis exercise for the executive management of a large bank.No routine here; each day brings a new challenge!

Join Wavestone as an intern in our Cybersecurity department, focusing on the challenges and solutions pertinent to the modern digital workplace. This role will provide you with a unique opportunity to engage with cutting-edge cybersecurity strategies while collaborating with experienced professionals in the field.Your responsibilities will include assisting in the development of security protocols, analyzing potential vulnerabilities, and contributing to the enhancement of our digital infrastructure. This hands-on experience will equip you with valuable skills and insights into the evolving landscape of cybersecurity.

Context:Technology is increasingly embedded in the objects around us. From connected scooters and smartwatches to factory sensors communicating with cloud systems, even cosmetics are being revolutionized by beauty tech!These connected devices are particularly susceptible to security threats due to their limited capabilities, mobility in potentially hostile environments, and the varying levels of cyber maturity among their users.Moreover, securing these IoT devices presents a unique challenge, as they integrate into extensive ecosystems, each requiring robust protection across every component and their interconnections: hardware, firmware, gateways, wireless networks, mobile applications, fleet management platforms, APIs, and more.This diversity in components, network architectures, and user interfaces introduces vulnerabilities that can be exploited by attackers, posing a significant challenge: How do we ensure comprehensive security in the face of the growing interconnectivity of IoT devices?Objectives:The aim of this internship is to address the various components of the IoT ecosystem within a particular sector by analyzing their risks and market trends, while also proposing suitable security solutions.Tasks:Under the guidance of a consultant and the supervision of a manager, the intern will be involved in some or all of the following tasks:Formalizing an overview of the IoT ecosystem: sector analysis, benchmarking, regulatory insights, etc.Assessing major risks impacting a sector, product, or specific component.Building a model to simulate attack scenarios.Creating security guidelines for a product, technology, or component.

Join Magellan Sécurité as a Consultant Pentester / Auditor and become a vital part of our rapidly growing team in cybersecurity. You will collaborate closely with strategic accounts, delivering expert guidance to secure critical infrastructures while enhancing their overall security posture.Your role will be pivotal in driving our growth strategy, working alongside dedicated delivery teams and pre-sales departments to ensure our clients achieve their cybersecurity goals.

Join the dynamic team at iliad-free as a Cybersecurity Manager in Paris, where you will play a crucial role in safeguarding our digital landscape. You will be responsible for developing and implementing security protocols, monitoring systems for vulnerabilities, and ensuring compliance with industry standards. If you are passionate about cybersecurity and eager to contribute to a progressive tech environment, we want to hear from you!

ContextIndustrial Information Systems have traditionally been viewed as less sophisticated compared to conventional enterprise systems. Historically isolated from Ethernet networks and designed to function independently, these systems did not require robust security measures. However, this landscape has dramatically shifted in the last decade due to a surge in cyberattacks, increasing connectivity with external networks, and significant business transformations aimed at optimizing production processes, thus making cybersecurity a critical concern for the industry.Today, industrial systems are undergoing a digital transformation, adopting innovative solutions to bridge their technological gaps. The convergence of office information systems and industrial information systems (IT/OT) has become a reality, enabling smoother integration of information systems with production environments. Established IT players are now offering solutions tailored to the specific needs of industrial environments. Notable advancements include the development of secure industrial protocols that incorporate data signing and encryption by design, the adoption of virtual controllers (soft PLCs) to enhance flexibility, the migration of control systems to the Cloud, and the deployment of Edge Computing that processes data close to the machines rather than relying on remote servers.The industrial cybersecurity landscape is rapidly evolving, with innovations such as network detection probes specifically designed for industrial settings, and the implementation of the SBOM (Software Bill of Materials) concept, which provides a detailed inventory of all software components to enhance security management and traceability.How can these evolutions and innovations be facilitated while ensuring satisfactory security levels? It's crucial to remember that industrial systems impact the physical world, and compromising these systems could have significant repercussions on the environment or the personnel operating within industrial sites.Internship ObjectiveThe objective of this internship is to augment Wavestone's expertise in managing cyber threats and to explore emerging solutions that enhance industrial cybersecurity.

CONTEXTAt Wavestone, our cybersecurity practice supports clients across a wide range of areas including incident response, data protection regulations (GDPR), and information system application security.The emergence of new technologies like artificial intelligence, generative AI, and agent-based AI is reshaping the entire cybersecurity landscape. Consequently, cybersecurity roles must evolve to address the challenges posed by this new technological layer.Our projects involve various initiatives such as:Researching AI solutions that enhance cybersecurity professions (market technology watch)Guiding the framing and execution of transformation programs for cybersecurity teams with the integration of AIImplementing security measures tailored for specific AI systems (prompt filtering, access management construction for agents…)Establishing governance for access rights management to databases that facilitate AI development or are accessible to AI agentsConducting configuration audits of key services for developing AI systems (Azure AI Foundry, Copilot Studio, Amazon Bedrock, Vertex AI…)Executing internal penetration testing exercises, employing various approaches including phishing, OSINT, or physical intrusion OBJECTIVEThe goal of this internship is to enhance Wavestone’s knowledge and expertise in the intersections of cybersecurity and artificial intelligence. This includes updating and refining our technical convictions, studying market solutions operationalizing AI security measures, preparing accelerators to streamline resource deployment related to cybersecurity and AI during client missions, and showcasing our expertise by writing an article for the RiskInsight blog. TASKS TO BE PERFORMEDUnder the guidance of a consultant and management oversight, the intern may undertake part or all of the following tasks:Market study and benchmarking of existing solutionsTesting market solutionsDeveloping accelerators or tools that facilitate client missionsThe precise title and scope of the internship will be confirmed at the beginning of the internship. Below are two examples of potential projects.AI and cybersecurity: transformation roadmap for CISOsSecuring AI systems: best practices and recommendations

About MistralAt Mistral AI, we harness the transformative power of AI to streamline workflows, save valuable time, and foster creativity and learning. Our cutting-edge technology is designed for seamless integration into everyday tasks, making AI accessible to everyone.We democratize AI with high-performance, optimized, open-source models and solutions tailored for enterprise needs, whether deployed on-premises or in the cloud. Our innovative offerings include le Chat, an AI assistant that enhances both personal and professional life.Join a dynamic and collaborative team that is passionate about the potential of AI to revolutionize society. Our diverse workforce thrives in competitive environments and is committed to driving innovation. With teams spread across France, the USA, the UK, Germany, and Singapore, we pride ourselves on being creative, low-ego, and team-oriented.Become part of a pioneering company that is shaping the future of AI. Together, we can create a meaningful impact. Discover more about our culture on https://mistral.ai/careers.Role SummaryMistral is seeking a skilled Cybersecurity Engineer specializing in SIEM to design and manage the infrastructure that guarantees the observability of our production systems.Your role will encompass treating the SIEM and logging infrastructure as a high-performance data product. Your goal will be to ensure the reliability, scalability, and cost-effectiveness of the pipelines that ingest security telemetry from our GPU clusters, cloud environments, and applications.Key Responsibilities• Oversee the setup, lifecycle, availability, and performance of the SIEM solution, ensuring 99.9% uptime for log ingestion and query availability.• Design and maintain high-throughput data pipelines for collecting, buffering, and transporting logs from distributed systems to the SIEM.• Implement parsing logic and schema standardization to ensure unstructured logs are searchable and actionable for analysts.• Manage alert rules, connectors, and dashboard configurations, minimizing manual console tasks.• Analyze ingestion patterns to identify and rectify noisy data streams.

Join Wavestone as a Senior Consultant or Manager in our IT Model & Strategy division. In this pivotal role, you will leverage your expertise to guide clients in navigating complex IT transformations, enhancing operational efficiency, and aligning technology strategies with business objectives. You will collaborate with cross-functional teams to deliver innovative solutions that drive measurable results.

Join Wavestone as a Consultant in Human Resources for your final internship! This is an exciting opportunity to work with a leading consultancy firm, engaging in impactful projects and collaborating with industry experts. You will be involved in strategic HR initiatives, helping clients enhance their workforce strategies and drive organizational success.

ContextIn the era of Industry 4.0, the integration of Artificial Intelligence (AI) into Industrial Information Systems is revolutionizing production processes. AI, when combined with the Industrial Internet of Things (IIoT) and the vast amounts of data generated, enhances performance, predicts failures, and improves decision-making. However, these complex systems, composed of networks of sensors, actuators, and data analysis platforms often connected to the Internet, expose industrial environments to new risks.The introduction of AI raises significant cybersecurity challenges, as it can be misused for malicious purposes, including data manipulation, algorithm attacks, and exploiting existing system vulnerabilities. Securing Industrial Information Systems has become crucial in a landscape where legacy and modern systems coexist, often using varied and sometimes vulnerable protocols, creating opportunities for sophisticated cyberattacks.AI is just one aspect of the broader Industry 4.0 concept, which encompasses technological innovations aimed at enhancing industrial efficiency. The organization of production units is being reimagined, including their internal design and interactions with other enterprise systems, often referred to as smart factories.How can we ensure the security of devices within a heterogeneous fleet of both modern and outdated systems? Such coexistence was manageable when these devices operated in isolation, but is no longer acceptable when connected to the Internet.Internship ObjectiveThe primary goal of this internship/apprenticeship is to deepen the understanding of future factory security (business requirements, security challenges, risk analysis, maturity level, target architecture, etc.), address AI-related issues, and develop tools and methods to assess maturity levels and provide recommendations for securing industrial environments.Tasks to be AccomplishedUnder the guidance of a consultant and the management of a supervisor, the intern will undertake some or all of the following tasks:Analysis of major risks affecting Industrial IT, particularly those associated with AI.Design of a maturity assessment tool (Excel, questionnaire, etc.) focused on Industrial IT security.

Join Wavestone as a Change Management Consultant Intern, where you will play a vital role in supporting organizations through transformational changes. In this dynamic internship, you will collaborate with seasoned professionals to implement effective change management strategies that enhance overall performance and employee engagement.Responsibilities include conducting stakeholder analyses, developing communication plans, and assisting in training initiatives to facilitate smooth transitions. This is an exceptional opportunity to gain hands-on experience in change management within a vibrant consulting environment.