PwC, a multidisciplinary firm, brings together 7,000 employees in France and the Maghreb, within a global network of over 364,000 people in 136 countries. Every day, we practice professions of excellence to realize our ambition: to be useful to our clients and accelerators of movement. In a constantly evolving world, we invest in the development of our teams with a strong value proposition: Grow here. Go further. A global commitment to support our talents in the development of their skills. What are we looking for? Expertise, of course. But above all, curious, passionate personalities, ready to embody the behaviors of the PwC Professional, our common framework that guides our way of working together. Recognized as a Top Employer for the 6th consecutive year, PwC is committed to offering an inclusive and disability-friendly work environment, where everyone can fully collaborate and have an impact. If you need specific accommodations for the recruitment interview, please let us know.
Your team: We assist our clients, large groups or ETIs, in their transformations, whether it involves regulatory compliance, Risk and Compliance functions, or global risk management. Our mission is to offer them an innovative vision of risk management, solutions adapted to current challenges (macroeconomics, AI, cybersecurity, sustainability, etc.), as well as recognized expertise to strengthen their resilience and support their growth, by integrating risk into their strategy and decisions. We bring together experts in cybersecurity and technological risk management to increase our clients' operational resilience and manage crises in full digital transformation: securing information systems, cybersecurity, and supporting transformation projects. Joining this activity means being at the heart of corporate security and digital transformation.
As a Senior Consultant within the Toulouse office, you will play a key role in the development of PwC's Cybersécurité GRC activity. You will intervene on:

1. Analysis & risk management
   • Conduct risk analyses (EBIOS RM, ISO 27005, NIST RMF…): collection of assets, definition of concrete attack scenarios, evaluation of impact and likelihood.
   • Define & monitor indicators / KRI: critical risks, trend, remediation follow-up.
   • Challenge risk / cost / deadline trade-offs with business lines / DSI / RSSI.
2. Compliance
   • Perform compliance diagnostics and establish associated compliance plans (type ISO 27001, DORA, NIS2, RGPD…).
   • Pilot the implementation of corrective measures: implementation of controls, formalization of procedures on key issues (risk management, vulnerability management, security incident management, etc.), collection of evidence, preparation and conduct of internal audits.
3. Governance & cyber transformation
   • Build or strengthen governance frameworks (security policies, roles & responsibilities, essential processes, committees, KPIs, and reporting).
   • Define or deploy transformation plans: construction of the security roadmap, employee awareness and engagement, promotion of risk culture.
   • Support security-business integration: ensure that cybersecurity is a decision-making lever, not a hindrance.
4. Delivery & piloting
   • Co-facilitate workshops and structure deliverables (framing notes, presentations, risk matrices, security policies, dashboards, etc.).
   • Present your recommendations to clients (RSSI, DSI, steering committee, business lines).
   • Coaching junior consultants to support their skill development.

Eligibility / Qualification Required:

• 3 to 5 years minimum in GRC, security audit, compliance, cyber risk (ideally acquired in a consulting firm or within a large group).
• Solid mastery of frameworks and regulations: ISO 27001 / 27005, DORA, NIS2, RGPD, ISO 22301, EBIOS RM, NIST CSF.
• Ability to quickly transition from a strategic to an operational vision.
• Good interpersonal skills, ease in exchanges with decision-makers, and persuasive force.
• Excellent written and oral communication, sense of pedagogy and leadership.
• Team spirit, autonomy, curiosity, taste for new or evolving subjects.
• Proficiency in English (C1 level recommended), essential in an international environment.

How to Apply:

The text describes a multi-step recruitment process, but the initial application method (e.g., email address, online portal URL) is not explicitly provided.

Recruitment Process:

• Online assessment with a skills test and/or an English test.
• HR interview.
• Meetings with operational teams (one or more in-person interviews).
• Information verification: before hiring, a specialized organization will verify the elements on your CV.

General Conditions:

PwC is committed to offering an inclusive and disability-friendly work environment, where everyone can fully collaborate and have an impact. If you need specific accommodations for the recruitment interview, please let us know.

Your Benefits:

• An innovative technological environment: access to cutting-edge tools such as the Tech Lab, Copilot M365, and the AI Factory to shape the world of tomorrow.
• Exceptional learning and development opportunities, thanks to our intelligent training platform and our continuous feedback culture.
• A stimulating performance cycle, aligned with the PwC Professional framework, to help you achieve your goals and aim for excellence day after day.
• A positive and inclusive work environment to enable you to be fully yourself and collaborate effectively in serving our clients (parenthood programs, gender equality, Be Well, Work Well health and wellness programs, LGBT+ inclusion, and maintaining employment for people with disabilities).

View Official Posting & Apply