🤔Who are we?

As the founding entity of RAINBOW PARTNERS, Quanteam is a consulting firm specializing in the fields of Banking, Finance, and Financial Services. Guided by our core values of closeness, teamwork, diversity, and excellence, our team of 980 expert consultants, representing 35 different nationalities, collaborates across 12 international offices: Paris, Lyon, New York, Montreal, London, Brussels, Geneva, Lisbon, Porto, Casablanca, Madrid and Singapore. Committed to sustainability (Ecovadis Gold), diversity (gender index: 92%), and quality of work life (Best Workplace Experience), Quanteam is a forward-thinking enterprise.

🚀 Our Expertise

With a dual expertise in both business and IT, Quanteam supports its corporate clients (investment banks, asset management companies, private and retail banks, custodians, etc.) across the entire Front-to-Back spectrum in evolving their business activities and transformation projects.

Our teams are organized into 5 expertise areas:

➡ Quantitative Finance

➡ Risk, Compliance, and Regulatory

➡ Operations and Finance

➡ Transformation and Organization

➡ Information Systems

In 2023, Quanteam generated a revenue of €74.6 million.

🔎 We are looking for a Cybersecurity and Management Systems Support Service.

Main Tasks:

1. LOD1.5 Execution and Support

• Validated evidences from LOD1 controls, including assessment of implementation effectiveness and maturity.
• - Improvement proposals for controls, with defined owners and responsible parties.

2. Certifications Support

• Certification preparation packages for ISO 27001, ISO 22301, ISO 9001, Digital Seal (Gold Seal), and QNRCS High-Level certifications.
• Regularly updated certification calendar, including stakeholder alignment and preparation activities.
• Collection and validation of audit documentation and evidences.
• Documented audit and management review outputs, including NCs and OFIs, with defined action plans, owners, and regular follow-up.
• Regular updates on the implementation, resolution, and closure of NCs and OFIs assigned to the ISMS team.
• Internal audit plans and reports.

3. Management Systems Monitoring and Improvement

• Completed and validated responses to client, partner, or regulatory information security questionnaires and assessments, including supporting evidences and documented follow-up actions when required
• Management Review preparation materials and presentations for the IMS scope.
• KPIs reports for ISMS activities, collected according to management-defined periodicity and reported/presented in required forums.
• Updated control register aligned with ISO 27001, ISO 22301, ISO 9001, and QNRCS High-Level standards, including risks, metrics, internal controls, evidences, documentation, remarks on implementation and others applicable.
• Updated or newly produced IMS documentation in the documentation management solution (between 150 and 200 documents)
• Improvement recommendations for information security documentation management.
• Reports identifying opportunities for process optimization and risk mitigation in information security, business continuity, and quality management.
• Records or minutes of meeting from the recurring alignment meetings and discussions with internal stakeholders regarding all the above services.

Main Skills & Requirements:

• GRC and Internal Controls.
• ISO Certifications (27001, 22301, 9001).
• Documentation Management.
• Information Security & Business Continuity.
• Communication & Stakeholder Management.
• Fluency in English is mandatory.

📍 Hybrid Role in Porto.

🚀If you feel this opportunity is for you, send your CV and join our team!