Lead IT Auditor & Tech Risk Expert (Cybersecurity)

TL;DR

Lead IT Auditor & Tech Risk Expert (Cybersecurity): Strengthening the Group’s control environment and technology resilience by conducting complex IT audit engagements and serving as a senior expert on technology risks, cybersecurity, compliance, and governance. Focus on designing, planning, and independently conducting IT audit assignments across critical systems, infrastructure, and cloud environments, as well as assessing alignment with regulatory requirements and frameworks.

Location: Hybrid role based in Saint-Denis, France, with remote work possible up to 2 days per week.

Company

hirify.global is a pioneer in online event sales since 2001 and a key e-commerce player in Europe, collaborating with over 7,000 brands and generating €3.3 billion in revenue in 2024.

What you will do

• Design, plan, and independently conduct IT audit assignments covering critical systems, infrastructure, applications, and cloud environments.
• Assess the robustness and test the application of IT controls including access management, system security, and business continuity.
• Perform in-depth technical tests, analyze root causes, and challenge the operational effectiveness of control mechanisms.
• Prepare clear audit reports with findings, associated risks, and actionable recommendations, and monitor their implementation.
• Collaborate with cybersecurity, compliance, internal control, and IT teams on various projects for a comprehensive view of risks.
• Act as an internal expert on IT audit, technology security, and risk management issues, proposing innovation for modernization.

Requirements

• 5–8+ years of relevant experience in IT audit, cybersecurity, IT risk management, or technology assurance.
• Solid knowledge of IT governance, risk management, and internal control frameworks (e.g., COBIT, ITIL, ISO 27001, NIST).
• Strong understanding of IT infrastructure, networks, databases, cloud environments, and cybersecurity principles.
• Ability to analyze complex IT systems and identify operational and security risks.
• Experience in conducting IT audits, including planning, testing, and reporting.
• Familiarity with regulatory and compliance standards (e.g., GDPR, PCI DSS, NIS2).
• Strong written and verbal communication skills for reporting and presenting audit results clearly and effectively.

Nice to have

• Professional certifications (CISA, CISM, CRISC, ISO 27001 Lead Auditor, CCSK).
• Experience in a consulting firm.

Culture & Benefits

• Variable bonus.
• Participation & profit-sharing.
• Remote work possible up to 2 days per week.
• Access to an online language learning platform.
• Company Works Council (CSE) with numerous benefits.
• CESU and holiday vouchers.
• Access to company catering and connected fridges (Foodles, Kumo, Bolk).
• Access to a gym.

Hiring process

• Artificial intelligence (AI) tools may be used to support parts of the hiring process, assisting the recruitment team without replacing human judgment.