Cintoo is a fast-growing start-up developing a SaaS platform at the convergence of Reality Capture and Digital Twins. We are searching for flexible go-getters who welcome the challenge of meeting the needs of a fast-growing business. Cintoo improves performance and efficiency with a complete cloud-based, collaborative Scan & BIM platform to manage and distribute reality capture data, such as laser scans, with no compromise on accuracy. To date, over 550 companies and 90,000 users in 43 countries have uploaded over 300 km² on active projects, across hundreds of sites, in many countries, spanning industries such as automotive, construction and energy.
At Cintoo, we are driven by passion motivating our talented team to work together as a supportive family, fostering innovation and success.
Diversity is fundamental for us. We prioritize talent above all else, encouraging an inclusive and respectful environment where everyone can thrive as their true selves.
We are seeking a talented and passionate Deputy CISO for an apprenticeship.
RESPONSIBILITIES:
Information Security Governance
Contribute to the creation, update, and maintenance of security policies (ISMS, security policies, IT charters).
Participate in documenting security processes and procedures.
Support cybersecurity awareness and training initiatives for employees.
Risk Management
Assist in identifying and analyzing cybersecurity risks.
Contribute to risk assessments (EBIOS RM).
Help track and follow up on risk mitigation action plans.
Compliance
Support compliance initiatives (SOC2, ISO 27001, GDPR, NIS2)
Assist in preparing internal and external security audits.
Help monitor regulatory and compliance requirements.
Support to Operational Security Activities
Participate in identity and access management activities (Microsoft Entra ID).
Assist with user, group, and access rights management following IAM best practices.
Support basic Linux system security tasks (permissions, services, updates, hardening checks).
Security Monitoring & Continuous Improvement
Perform cybersecurity threat and vulnerability monitoring.
Stay informed on security best practices and emerging threats.
Propose improvements to existing security controls and processes.
SKILLS:
At least B2 English level.
Good understanding of cybersecurity and GRC concepts (risk, compliance, governance).
Basic knowledge of standards and frameworks (ISO 27001, GDPR, EBIOS RM – fundamentals).
Strong ability to produce clear, structured documentation.
Basic knowledge of Microsoft Entra ID (identity and access management).
Basic Linux administration skills (users, permissions, services).
General understanding of IT environments (systems, networks, cloud fundamentals).
Strong attention to detail and organizational skills.
Analytical and problem-solving mindset.
Curiosity and strong interest in cybersecurity.
Ability to work collaboratively in a team environment.
Good written communication skills.
REQUIREMENTS:
Currently enrolled in a Master’s degree in:
Cybersecurity
Risk Management or Information Security
OPTIONAL SKILLS:
Basic scripting knowledge (Bash, PowerShell).
Interest in cloud security and Zero Trust concepts.
Familiarity with GRC tools or automation.
Why to join us:
Discover an enriching professional opportunity where you can not only contribute to stimulating projects but also enjoy a friendly atmosphere with our lunch participation, monthly team breakfasts, exciting challenges and sports activities. Join our team today and combine professional success with daily well-being!