**Job Description** ------------------- **Hello! We are CAPGEMINI!** **We are fortunate to work in a sector that leads the way toward a sustainable and inclusive future.** **TECHNOLOGY \-** **the catalyst for so many solutions we need now more than ever.** **We are** **300,000 PEOPLE** **around the world united by a shared passion.** **No matter where we are at home, in the office, or a thousand kilometers away \-** **OUR WORK MATTERS** **.** **We are diverse, ethical, and aware that every stage of a professional journey counts. So, if you're in a moment of growth, learning, or value flexibility and work\-life balance, here you can feel that you're** **RIGHT WHERE YOU BELONG** **.** **Would you like to join CAPGEMINI?** **We’re looking for a** **Cybersecurity Risk \& Audit Specialist** **(** **100% On site client office)** **with experience in security platforms, technical audits, and risk management in virtualized environments.** **This role will support and participate in key client projects, providing both technical and strategic insight into network and system defense, as well as risk assessment and mitigation.** **Key Responsibilities** **Act as an auditor, advisor, and coordinator for security requirements** **Deliver clear evaluation reports with findings, recommendations, and action plans** **Support and execute security audits (NIST, CIS, ISO27001\)** **Develop and maintain security support materials (models, templates, standards, procedures)** **Collaborate with other security teams to share best practices** **Evaluate risks and define mitigation measures in key projects** **Create and review technical documentation** **Stay up to date with cybersecurity regulations and standards (DORA, NIS2, EIOPA, etc.)** **Job Description \- Grade Specific** ------------------------------------- **Knowledge and Experience** **University degree or equivalent in a technical field** **Experience in IT; knowledge of industrial security (OT) is a plus** **Background in security audits and risk management** **High level of English (international projects)** **Proficiency with monitoring and security tools in infrastructure** **Experience setting up physical labs and virtualizing them** **Administration of hybrid environments (on\-premise and cloud)** **Deployment of security technologies: NGFW, SIEM, IDS/IPS, HIDS, NAC, NPB, UEBA** **Corporate\-level IT network and systems administration (Fabric, SDN, virtualization)** **Container technologies knowledge is a plus (e.g., Docker, Kubernetes, OpenShift)** **Cybersecurity audits and testing (Kali Linux, OpenVas, Nessus)** **System hardening and automation (Linux/Windows)** **Advanced scripting in Bash and Python** **Valuable areas of expertise:** * **Vulnerability analysis** * **IT/OT system hardening** * **Lab virtualization** * **Defensive tool optimization** * **DFIR / malware analysis** **Valuable Certifications** **ISO/IEC 27001 Lead Auditor** **CCNA, CISSP, CISA, CRISC** **GIAC (any), CEH, OSCP, CompTIA** **What will you love about working here?** **24 vacation days \+ 2 personal days \+ December 24 \& 31 off \+ option to buy up to 7 extra days** **Remote work from another country for up to 45 days/year (** **FlexAbroad** **)** **Continuous learning with access to platforms like Coursera, Udemy, Pluralsight, Harvard Manager Mentor, Education First, and more** **Certifications, career paths, and professional development programs** **Rewrite your future.** **Join the team!**