Cyber & IT Control Compliance Analyst H/F

Digital 113
Canton of Aubervilliers, France
28 days ago

Role details

Contract type
Permanent contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English
Experience level
Intermediate

Job location

Canton of Aubervilliers, France

Tech stack

Computer Security
PCI Data Security Standards
Smartsuite
IT General Controls (ITGC)
Information Technology
RSA Archer Platform
ServiceNow

Job description

Support the assessment and validation of cybersecurity and IT controls to help ensure compliance with internal standards and regulatory frameworks such as NIST CSF, NIS2, DORA, ISO 27001/27005, and PCI DSS. Working closely with Cybersecurity, IT, Risk, Compliance, and Audit teams, you will contribute to control testing, evidence collection, remediation tracking, and audit readiness using ServiceNow IRM or similar GRC platforms.

What You'll Do

  • Support IT and cybersecurity control assessments and testing activities.

  • Gather, review, and maintain control evidence, findings, and remediation actions in ServiceNow IRM or similar GRC tools.

  • Assist with compliance and regulatory readiness initiatives.

  • Partner with cross-functional teams to validate controls and address gaps.

  • Contribute to reporting, documentation, and continuous improvement of assessment processes.

  • Help ensure alignment with NIST, NIS2, DORA, ISO 27001/27005, PCI DSS, and related requirements.

Requirements

Bachelor's degree in Cybersecurity, Computer Science, or a related field.

  • 3 years of experience in Cybersecurity, IT Controls, Audit, Risk, Compliance, or Governance, Risk & Compliance (GRC).

  • Foundational understanding of NIST CSF and exposure to NIS2, DORA, ISO 27001/27005, and PCI DSS.

  • Experience supporting control assessments, compliance reviews, or audit activities.

  • Familiarity with ServiceNow IRM or other GRC platforms.

  • Strong analytical and documentation skills with attention to detail.

  • Ability to communicate audit findings, control gaps, and compliance issues clearly to both technical and non-technical stakeholders.

  • Strong English communication skills.

Who You Are

  • An early-career professional with a solid foundation in cybersecurity governance, risk, and compliance.

  • Passionate about learning, growing, and building expertise in cyber compliance and controls.

  • Adaptable and flexible, including occasional collaboration across international time zones.

  • A strong team player who thrives in a collaborative, multicultural environment.

  • Curious, proactive, and eager to contribute rather than relying solely on years of experience.

Apply for this position