Who are we?
As the founding entity of RAINBOW PARTNERS, Quanteam is a consulting firm specializing in the fields of Banking, Finance, and Financial Services. Guided by our core values of closeness, teamwork, diversity, and excellence, our team of 1000 expert consultants, representing 35 different nationalities, collaborates across 12 international offices: Paris, Lyon, New York, Montreal, London, Brussels, Geneva, Lisbon, Porto, Casablanca, Madrid and Singapore. Committed to sustainability (Ecovadis Silver), diversity (gender index: 94), security (ISO27001) and quality of work life, Quanteam is a forward-thinking enterprise.
Our Expertise
With a dual expertise in both business and IT, Quanteam supports its corporate clients (investment banks, asset management companies, private and retail banks, custodians, etc.) across the entire Front-to-Back spectrum in evolving their business activities and transformation projects.
Our teams are organized into 5 expertise areas:
➡ Quantitative Finance
➡ Risk, Compliance, and Regulatory
➡ Operations and Finance
➡ Transformation and Organization
➡ Information Systems
In 2025, Quanteam generated a revenue of €120 million.
We are looking for a Risk Analyst & Permanent Controller
Context
We are looking for a Risk Analyst & Permanent Controller to join an international cybersecurity team within a global IT function, focused on Payment Services.
The role sits within a cybersecurity and digital risk environment responsible for managing cyber risks across IT payment systems, ensuring the protection, resilience, and compliance of critical payment activities.
You will be part of a dynamic and international team, working closely with cybersecurity, IT, and risk stakeholders across different locations.
Main Mission
To ensure effective cyber risk management within Payment Services by identifying, analyzing, and monitoring risks, as well as supporting the implementation of remediation actions across IT systems and processes.
Main Responsibilities
- Define and promote cybersecurity governance across Payment Services
- Support teams in identifying, assessing, and managing cyber risks
- Perform risk analysis and contribute to control activities (ICT & non-ICT risks)
- Identify root causes, potential incidents, and risk exposure scenarios
- Monitor remediation plans and validate the effectiveness of corrective actions
- Contribute to risk assessment exercises (RCSA, audits, reviews)
- Provide risk reporting and consolidated risk views to senior stakeholders (CISO / IT Risk)
- Issue alerts and recommend mitigation actions when needed
- Support third-party risk management analysis
- Collaborate with IT, security, and risk stakeholders (risk managers, resilience, audit)
Profile & Skills
- Experience in Cybersecurity / IT Risk (Mid-level, 3+ years)
- Strong analytical and problem-solving skills
- Ability to work autonomously and proactively
- Strong stakeholder management and communication skills
- Comfortable working in an international and collaborative environment
- Knowledge or interest in payment systems and regulations is a plus
- Fluency in English
Technical Skills
- IT Risk Management & Cybersecurity
- GRC tools (e.g., ServiceNow)
- Risk frameworks (RCSA, control plans, incident analysis)
- Root cause analysis & impact assessment
- Microsoft Office
Nice to have
- Knowledge of payment regulations (DORA, PCI-DSS)
Hybrid work model, with presence required in Porto office.
If you feel this opportunity is right for you, send us your CV and join our team!
Localização do trabalho: Trabalho remoto híbrido em Porto
