IT risk analyst

  • Permanent contract 
  • Paris

The company



  • IT / Digital
  • From 50 to 250 employees

The job

IT risk analyst

  • Permanent contract 
  • Paris


Founded in 1999 by 3 French Internet pioneers who wanted domain name registration to not be the exclusive purview of just a few major U.S. companies, Gandi became the first ICANN-accredited French registrar in 2000. That same desire for independence has guided them ever since.

Offering an alternative for Internet users, defending the privacy of their customers, and supporting open source projects is part of the company’s DNA, which they sum up with the slogan “No Bullshit,” and drives them to seek alternatives to old and staid traditions and methods.

Gandi now offers a catalogue of 750 domains for individuals, small businesses, and major accounts. With offices on 3 continents, they have more than 140 employees spread between Paris, Luxembourg, Munich, San Francisco, and Taipei. Gandi manages more than 2.5 million domain names, 200,000 sites and applications, and 55,000 SSL certificates for nearly 350,000 customers.

At Gandi, it is the quality of service, guaranteed by an in-house—not outsourced—customer service team and committed employees, as well as an exceptional level of transparency that has enabled the company to become one of the biggest domain name sellers in the world over the past 20 years.

As a major technological player, Gandi offers its customers:

  • domain name registration and management
  • email management and storage
  • platform security (SSL certificates)
  • cloud server hosting

Job description

In the process of ISO 27001 compliance, we are looking for an IT Risk Analyst.
Working within the Ops department (SysOps, NetOps, SecOps) the analyst will be responsible to draft/modify policies and procedures. The role will be to help keeping Gandi compliant with ISO 27001 and others certifications to come.

  • Perform and write risk assessments on applications, systems, and processes

  • Maintain risk registers for identified risks

  • Draft new policies to ensure that Gandi is in compliant with all domestic and global regulatory requirements

  • Analyze current policies to ensure we stay in compliance with all domestic and global regulatory requirements

  • Organize and conduct meetings with application owners or/and administrators

Preferred experience

  • Solid understanding of global and domestic policies (ISO 27001, SOC2, PCI, RGPD GDPR, CNIL etc..)

  • Experience in performing risk assessments

  • Excellent understanding of IT processes

  • Curiosity and ability to understand production constraint

Qualifications & Experience

  • 3 years of experience in similar position

  • experience with risk registers and risk assessments

  • Experience with Governance Risk Management

  • Policy management and generation

Meet the Gandi team



IT risk analyst

  • Permanent contract 
  • Paris
Questions and answers about the offer
  • Ajouter aux favoris
  • Partager sur Twitter
  • Partager sur Facebook
  • Partager sur Linkedin

Notre sélection d'articles pour vous

Inspirez-vous avec une sélection d'articles

Comment rédiger son CV en espagnol ?

Traductions, mises en pages, atouts à mettre en valeur... Welcome to the Jungle vous livre des conseils pour réussir votre CV espagnol.