Hellowork a estimé le salaire pour cette offre
Cette estimation de salaire pour le poste de Senior Cybersecurity Grc - N H/F à Paris est calculée grâce à des offres similaires et aux données de l’INSEE.
Cette fourchette est variable selon expérience.
Salaire brut min
42 500 € / an 3 542 € / mois 23,35 € / heureSalaire brut estimé
58 800 € / an 4 900 € / mois 32,31 € / heureSalaire brut max
73 200 € / an 6 100 € / mois 40,22 € / heureCette information vous semble-t-elle utile ?
Merci pour votre retour !
Senior Cybersecurity Grc - N H/F Believe
- Paris - 75
- CDI
- Bac +5
- Média • Internet • Communication
- Exp. 3 ans min.
Les missions du poste
We're hiring a Security GRC Engineer to help us build governance, risk, and compliance in a way that actually works in a modern tech organization: pragmatic, automation-friendly, and aligned with agile delivery.
This is not a paperwork job. You'll partner closely with engineering, product, workplace, auditors and security to turn risk management and compliance into clear, usable guardrails and you'll challenge processes that create friction without improving security.
What you'll do
- Risk management that drives decisions
Run lightweight, continuous risk assessment and threat modelings with teams (not once-a-year rituals).
Translate risk into clear options: impact, likelihood, tradeoffs, and recommended actions.
Track remediation plans and provide visibility through simple reporting.
- Build practical governance
Maintain and improve security policies/standards so they're short, actionable, and adopted.
Create control objectives that fit real engineering workflows (CI/CD, cloud, SaaS, identity).
- Compliance, without the theater
Support audits and evidence collection with a focus on efficiency and reusability.
Help align our program with recognized frameworks (e.g., NIST ) in a pragmatic way.
Develop compliance-as-code habits where possible (automated checks, continuous evidence).
- Third-party risk (vendors, partners)
Drive assessments, follow-ups, and risk treatment with procurement and stakeholders.
Push for scalable vendor processes (tiering, standard questionnaires, measurable requirements).
- Security enablement
Create playbooks, templates, and self-service material that teams can use without heavy guidance.
Coach teams to understand risk and make better security choices early in delivery.
Le profil recherché
Experience in GRC / risk / compliance in a tech environment (security, cloud, SaaS, engineering orgs).
Strong understanding of security fundamentals: identity, access, logging, incident response, cloud shared responsibility, secure SDLC (at a practical level).
- Ability to write simple, clear policies/standards and translate requirements into engineering-friendly controls.
- Comfort with ambiguity and agility: you can iterate, prioritize, and deliver incremental improvements.
- Excellent stakeholder skills: you can influence without authority, challenge respectfully, and get things done.
Bonus points
- Experience aligning programs to frameworks (NIST CSF, ISO 27001, SOC 2, etc.).
- Experience with vendor risk platforms or automation (workflows, evidence collection, dashboards).
- Familiarity with compliance as code concepts, continuous controls monitoring, or security tooling.
- Experience partnering with product/engineering teams on secure-by-design practices.
How we work
We value ownership, transparency, and pragmatism.
We prefer automation and repeatability over manual processes.
We challenge the old way when it's slow, fragile, or meaningless.
We aim to be a security team that teams want to work with.
Bienvenue chez Believe
Believe is a global artist development company. We empower local artists, labels and
publishers to grow their audiences at each stage of their careers with expertise, respect,
fairness and transparency.
Operating in 50+ countries, with more than 2,000 employees, Believe oCers a full range
of services including audience development, publishing, marketing and distribution,
with a tailor-made approach to fit any artist, label or publisher.
Believe champions independence and innovation through a unique model that
combines local expertise with a global tech platform, delivering exclusive solutions for
artists to promote and monetize their music thanks to strategic partnerships with
leading global digital service providers.
With a leading portfolio of brands that includes Nuclear Blast, naïve, TuneCore, Groove
Attack, Sentric, AllPoints and Byond, Believe artists generated more than 800 billion
streams worldwide in 2024 across all genres, and were recognized with more than 70
leading industry awards.
Believe is a simplified joint-stock company under French law.
Ready to set the tone with Believe ?
Publiée le 16/01/2026 - Réf : BLV_26_2854
Créez une alerte
Senior Cybersecurity Grc - N H/F
- Paris - 75
- CDI
Finalisez votre candidature
sur le site du
recruteur
Créez votre compte pour postuler
sur le site du
recruteur !
sur le site du recruteur
sur le site du recruteur !
Ces offres pourraient aussi
vous intéresser
Recherches similaires
- Emploi Ingénieur sécurité informatique
- Emploi Informatique
- Emploi Développeur
- Emploi Technicien support informatique
- Emploi Développeur Java
- Emploi DevOps
- Emploi Chef de projet informatique
- Entreprises Informatique
- Entreprises Ingénieur sécurité informatique
- Entreprises Paris
- Emploi Sécurité informatique
- Emploi Drive
- Emploi Coach
- Emploi Junior
- Emploi Tech
- Emploi CDI Paris
- Emploi Junior Paris
- Emploi Sécurité informatique Paris
Testez votre correspondance
Chargement du chat...
{{title}}
{{message}}
{{linkLabel}}