GRC / Pentest Security Consultant | Casablanca (Morocco)

Orange Business stands out for its strongly collaborative culture, placing people, trust and collective engagement at the heart of its operations. The company promotes close and supportive management, fostering autonomy, accountability and continuous skills development within a caring work environment. This collaborative foundation is reinforced by a significant innovation component, encouraging creativity, initiative and agility across teams. Structured processes support operational efficiency, while performance objectives are integrated in a balanced and sustainable way.

You will join the Consulting & Audit team of Orange Cyberdefense in Morocco as an Experienced Consultant to support our clients in securing their IS, particularly with large accounts (private, public) in the Maghreb and West Africa.

In this role, your main tasks will be:

• Conduct risk analyses (EBIOS, MEHARI, etc.)
• Implement and review the ISMS ISO 27001,
• Develop Security Policies, operational security procedures, standards, etc.
• Support compliance (Law 09.08, DNSSI, ISO27001-2, GDPR, etc.),
• Implement & raise awareness for the DevSecOps approach
• Review Cloud security measures
• Define cyber defense strategies / IS Security Master Plan
• Review architecture security
• Design and audit IT continuity and disaster recovery (ISO 22301)
• Raise security awareness
• Present results to different hierarchical levels
• Provide advice and recommendations adapted to the security problems encountered by clients.
• Maintain and test audit methodologies

You have a Master's degree from an Engineering School and have 2 to 5 years of experience in cybersecurity.

You have strong knowledge of our business areas. You have a team spirit, you show initiative and autonomy, you have good interpersonal skills and a sense of responsibility. You communicate equally well orally and in writing in French and English.

Obtaining an information security certification is a plus.