EQUANS

Equans is a world leader in the energy and services sector with annual revenues of nearly 192 billion* and almost 800000 projects.

Equans has leading positions in Europe which is the result of the history of energy construction in these countries and strong presences in North and South America and in Oceania.

With nearly 90000 highly skilled employees Equans has a strong geographic footprint anchored by historic local brands. Equans provides its customers with excellent technical expertise in the design installation maintenance and operation of multi-technical facilities. This know-how is based on key skills. First of all in electrical and thermal engineering - two strong points that help accelerate the reduction of our clients carbon footprint - but also inventilationrefrigerationmechanics and roboticsfire protection energy renovationdigital solutionsIT cyber security and telecommunications.

The combination of these expertise allows us to offer efficient and optimized solutions at all stages of the energy chain from production storage and transport to usage.

EQUANS Group IT is organized aroundShared Line of Services (SLS)delivering global IT services and platforms to all EQUANS entities worldwide.
TheGroup Applications Shared Line of Services (SLS Group Apps) is responsible for delivering IT projects and services aligned with business priorities quality and cost objectives

Within this organization to support the cybersecurity roadmap and contribute to broader cybersecurity activities we are looking for a Cybersecurity Apprentice Cybersecurity Posture & Governance based in Courbevoie working closely with the S-CISO for Group Apps & Data and stakeholders within these SLSs.

This apprenticeship is a great opportunity to contribute to high-impact cybersecurity governance initiatives in an international environment while developing practical experience in governance (ISO27001) cyber risk management compliance vulnerability follow-up security reporting and continuous improvement.

(*) Turnover 2024 consolidated

Cybersecurity Apprentice Cybersecurity Posture & Governance (F/M)

Summary of the role

As a Cybersecurity Apprentice you will support the S-CISO for Group Apps & Data in the monitoring and continuous improvement of cybersecurity controls with a focus on security governance compliance and cybersecurity posture.

You will work closely with cybersecurity teams IT service owners application owners architects operational teams to help structure evidence follow action plans support risk management activities and improve cyber governance.

The role is international by nature and requires curiosity rigor autonomy and the ability to interact with multiple stakeholders across IT and business teams.

KEY RESPONSIBILITIES

1. Security Governance & Documentation Support

• Assist the S-CISO for Group Apps & Data in maintaining and improving cybersecurity governance documentation
• Collect classify and structure evidence or supporting materials when required
• Help identify documentation gaps inconsistencies or missing inputs for review
• Contribute to the follow-up of action plans related to security governance and control improvement

1. Security Risk & Control Follow-up

• Support the preparation and documentation of security risk review activities
• Help collect information from application owners service owners architects and IT operations teams
• Document risks existing controls and mitigation actions based on inputs
• Maintain trackers related to risks controls remediation actions and follow-up items
• Follow up on agreed actions and highlight missing inputs or overdue items
• Prepare draft reporting materials for review

1. Compliance & Audit Readiness Support

• Assist with the operational follow-up of cybersecurity compliance activities
• Help maintain documentation repositories and compliance trackers
• Support the collection and organization of evidence for internal reviews or audit readiness activities
• Help consolidate cybersecurity KPIs / KRIs and prepare dashboard inputs
• Support the preparation of cybersecurity governance meetings and status updates
• Contribute to continuous improvement activities through documentation analysis and reporting support

TECHNICAL SKILLS & TOOLS

• Good understanding of general IT concepts including systems networks applications and cloud environments
• Basic knowledge of cybersecurity principles such as access management vulnerability management risk management and security controls
• Interest in cybersecurity governance risk and compliance activities
• Familiarity with security frameworks or standards would be appreciated
• Ability to work with documentation evidence collection action plans and follow-up trackers
• Good command of Microsoft 365 tools including Excel PowerPoint SharePoint and Teams

SOFT SKILLS

• Rigorous structured and detail-oriented
• Analytical mindset and good synthesis skills
• Good communication skills both written and oral
• Curious and eager to learn in cybersecurity
• Strong sense of confidentiality
• Able to work with IT stakeholders and external providers
• Autonomous collaborative and adaptable

PROFILE

Academic background & Experience

• Masters degree in progress ideally Bac4 / Bac5 in Cybersecurity Computer Science Engineering Information Systems IT Risk Audit or equivalent
• Looking for a 2-year apprenticeship
• First experience through an internship academic project or work-study program in IT cybersecurity risk management audit or compliance would be appreciated
• Interest in cybersecurity governance security controls risk follow-up and compliance activities
• Motivation to develop practical cybersecurity skills in an international IT environment
• Ability to work on documentation reporting and coordination activities with rigor and confidentiality

Language Requirements

• English:fluent (spoken and written) mandatory

Why Join Us

• Develop practical experience in cybersecurity governance compliance and risk follow-up.
• Build strong foundations in security controls documentation reporting and continuous improvement.
• Work in a collaborative and international IT environment.
• Support concrete cybersecurity activities including evidence collection action plan follow-up and reporting.
• Contribute to the protection and continuous improvement of strategic Group IT services.