Cloud Cyber Risk Analyst

About the position

Every moment counts. Especially those you live to the fullest. Welcome to Consort Group. For over 30 years, Consort Group has been helping companies leverage their data and infrastructure. It is backed by two leaders, Consortis and Consortia, and places people and social responsibility at the heart of its values. This is your future team Established in 2021, Consort Portugal supports the strategic offshoring choices of our clients, particularly in Europe, and brings our expertise in infrastructure services to the Portuguese market. With a team of around 45 employees, our Service Center based in Porto is developing a dynamic nearshore business, offering the French and European markets an environment of excellence and high potential. Cloud Cyber Risk Analyst This is your mission Are you passionate about cloud cybersecurity, third‑party risk, and strengthening the resilience of cloud ecosystems ? Then this position is for you. As a Cloud Cyber Risk Analyst , you will be responsible for supporting cloud cyber risk assessments and ensuring strong cybersecurity governance for SaaS and third‑party usage within a dynamic and highly collaborative environment. Build side: Analyse and contribute to cloud and SaaS third‑party onboarding studies (risk assessments, case reviews) Participate in the definition and evolution of third‑party cybersecurity governance Support Cloud Maturity Assurance activities by analysing risk assessments performed under ISO 27005 / EBIOS RM Contribute to risk assessments for cloud platforms and applications Provide critical insights and proposals to strengthen cloud cyber posture Contribute to cloud risk cartography when needed Run side: Follow up on third‑party cybersecurity governance in operational mode Monitor remediation plans implemented by cloud service providers or internal entities Challenge risk reduction measures and provide expert input Maintain cloud cybersecurity risk data in internal tools Participate in committees related to cloud and SaaS security cases Support team governance and organizational activities This is your background You have 5+ years of experience in demanding cybersecurity environments , ideally with exposure to cloud technologies and third‑party risk. You enjoy analysing complex situations, bringing a critical perspective, and helping drive secure cloud adoption. You are looking for an environment where your expertise truly influences decisions , and where collaboration is at the heart of every project. This is your expertise: Strong cybersecurity foundations (ISO 27001 Lead Implementer/Auditor is a plus) Risk management methodologies: ISO 27005 and/or EBIOS Risk Manager (certifications appreciated) Knowledge of third‑party risk management in cloud environments Understanding of cloud cybersecurity frameworks: SOC2, CSA, ISO 27017 Knowledge of security frameworks such as NIST or CIS Experience in project management is a plus Excellent written and verbal communication skills This is how you work as part of a team: Strong influencing skills, able to guide decisions without formal authority Pragmatic and adaptable in a constantly evolving environment Critical thinker with strong analytical and problem‑solving abilities Collaborative mindset and ability to communicate clearly with diverse stakeholders Language Skills : English – Mastery French – Notions This is our commitment At Consort Group, you are an expert who we support so that every assignment becomes a step that counts. Attentive and human onboarding A truly hands-on management style Continuous training opportunities Concrete commitments: inclusion, equality, solidarity A comprehensive HR package: health insurance, TR card, CSE, pension plan A culture of feedback and meaningful projects The recruitment process: An initial phone call with our recruitment team An HR interview and a job interview with a business engineer A test or technical interview with one of our experts A final meeting with your future manager or project manager And if we're a good fit, we'll get started together Good to know Location: Lisbon or Porto Contract: Permanent contract Remote work: Hybrid Job category: Cybersecurity / Cloud Security / Risk Management What you will do here, you won't do anywhere else. This moment is yours.

Place of work