Senior Cybersecurity Consultant

As a Senior Cybersecurity Consultant, you'll work across different client environments: legacy systems, hybrid setups, regulatory pressure, and stakeholders who need things explained clearly. You won't be expected to master every domain but you will be expected to go deep in at least two, and to grow beyond them.

These domains are : Cloud Security | Identity | Endpoint | Network | SIEM & Monitoring | Data Protection | Vulnerability Management.

What you'll do

• Design and implement security controls, policies, and architectures tailored to each client's environment and risk profile;
• Operationalize frameworks (NIST CSF, ISO 27001, CIS Controls) within real business and technical constraints;
• Assess cloud environments for misconfigurations; enforce security policies across hybrid and multi-cloud setups;
• Run the full vulnerability management cycle: scope, scan, analyze, track remediation, and validate fixes;
• Tune detection rules, perform correlation analysis, and support incident triage in SIEM environments;
• Deliver security workshops, awareness sessions, and reports for both technical and executive audiences;
• Build reusable toolkits and contribute to knowledge-sharing across the cybersecurity practice.

Relevant tools per domain 

• Cloud Security: AWS, Microsoft Defender for Cloud
• Identity: Microsoft Entra ID, Okta, CyberArk
• Endpoint: Microsoft Defender for Endpoint, SentinelOne, Cylance
• Network: Palo Alto, Fortinet, Zscaler
• SIEM & Monitoring: Microsoft Sentinel, Splunk, QRadar
• Data Protection: Microsoft Purview, Symantec DLP
• Vulnerability Management: Qualys, Nessus, Rapid7

Must-have

• 3+ years in cybersecurity — consulting, internal security, or technical delivery;
• Strong foundations: CIA triad, Zero Trust, least privilege, IAM;
• Proficiency in at least 2 of the domains listed above;
• At least one active certification: Security+, AZ-500, AWS Security Specialty, Google PCSE, or SC-900;
• Bilingual French / English — you'll write and present in both.

Softskills : Rigor · Analytical mindset · Clear communication · Collaborative · Client-oriented

Nice-to-have

• CISSP, CCSP, or ISO 27001 Implementer;
• Experience in regulated sectors: financial services, healthcare, or critical infrastructure;
• Familiarity with GDPR technical controls implementation.

🌈 Partner with a multi-awarded, Best Workplace & premium consulting company in Luxembourg. Devoteam Luxembourg offers a vibrant work culture that promotes innovation, knowledge sharing, and continuous learning. When you join our team, you will enjoy:

• 🚀 Continuous Growth. Surf with the latest trends, top experts, and extensive growth opportunities through mentoring, strong cloud partnerships (Microsoft, ServiceNow, ..), local Training Center, certifications programs, unlimited access to Udemy and our Power Skills Academy;
• 🌍 Be part of something bigger. Work for a company that values social impact, sustainability, and digital inclusion. Our CSR strategy will empower your ideas through the Devoteam Fondation and its volunteering possibilities;  
• 🤝 Team Diversity.  Join a team of 150 tech-enthusiasts from more than 25 diverse nationalities where togetherness & celebrating successes are paramount. 

Devoteam stands for equal opportunities. We are convinced that diversity contributes to the creativity, dynamism and excellence of our organization. All our positions are open to people with disabilities.