GRC Consultant(PCI DSS/ ISO27k)

About Atos Group

Atos Group is a global leader in digital transformation with c. 63,000 employees and annual revenue of c. €8 billion, operating in 61 countries under two brands — Atos for services and Eviden for products. European number one in cybersecurity, cloud and high performance computing, Atos Group is committed to a secure and decarbonized future and provides tailored AI-powered, end-to-end solutions for all industries. Atos Group is the brand under which Atos SE (Societas Europaea) operates. Atos SE is listed on Euronext Paris.

The purpose of Atos Group is to help design the future of the information space. Its expertise and services support the development of knowledge, education and research in a multicultural approach and contribute to the development of scientific and technological excellence. Across the world, the Group enables its customers and employees, and members of societies at large to live, work and develop sustainably, in a safe and secure information space.

• Hands on experience in Information Security and cybersecurity standards (PCI DSS, SWIFT CSP, ISO 27001:2022, ISO 27701, SOC2 etc)

• Should be adept at conducting gap analysis, risk assessments to identify threat and vulnerabilities based on NIST, ISO. PCI DSS, SWIFT frameworks

• Develop and implement cybersecurity standards, procedures. And guidelines for multiple cybersecurity standards (PCI DSS, SWIFT CSP, ISO 27001:2022, ISO 27701, SOC2, CMMC) 

• Should have executed and managed consulting and audit assignments for clients in the areas such as internal audit, operational risk management and compliance management. 

• Should be adept at conducting gap analysis, risk assessments to identify vulnerabilities.

• Have worked with organizations to develop Business Continuity Plans and Disaster Recovery related processes.

• Should be able to understand and explain technical vulnerabilities 

• Basic knowledge on Active directory, firewalls, SCCM, MacAfee security products, DLP, Secure coding practices and product security

• Should have Knowledge on information security incident management.

Specific Duties and Responsibilities Include: 

• Proactively protect the organizations information by ensuring appropriate information security controls are in existence and enforced

• Conduct audits to verify the compliance to organizations security standards

• Assist in Business Continuity Planning and Implementation.

• Metrics collection & reporting Must Have Skills

• Excellent communication and presentation skills.

• Able to effectively interact with various functions.

Must have Skills / Certification Minimum: ISO27001:2022 Lead Auditor course, PCI DSS Implementor Certification, PIMS 2025 LA

• Good to have: CISSP, CISA, CISM, ISO22301 QualificationBE/ BTech, MCA, MBA with specialization in Information Security

Here at Atos, diversity and inclusion are embedded in our DNA. Read more about our commitment to a fair work environment for all.

Atos is a recognized leader in its industry across Environment, Social and Governance (ESG) criteria. Find out more on our CSR commitment. 

Choose your future. Choose Atos.