.Devoteam Cyber Trust is the Cybersecurity specialist arm of the Devoteam Group. With our 800+ experts located across EMEA, we aim to establish cybersecurity as an enabler of business success rather than a gatekeeper. We leverage an end-to-end approach to Cyber Resilience, Applied Security, and Managed Security services to secure the tech journey of large and medium-sized companies from all sectors and industries. Since 2009, previously known as INTEGRITY, our team based in Portugal is specialised in providing cutting-edge Managed Security Services that combine its expertise and proprietary technology to consistently and effectively reduce the cyber risk of our clients. The comprehensive service range includes Persistent Intrusion Testing, ISO 27001, PCI-DSS, GRC Consulting and Solutions, and Third-Party Risk Management. ISO 27001 (Information Security) and ISO 9001 (Quality) certified, PCI-QSA, and member of CREST and CIS - Centre for Internet Security, we provide services to a considerable number of clients, operating in more than 20 countries. Job Description We are looking for DORA Consultants or experienced people in DORA subjects (such as ICT Governance and oversight, ICT Risk Management, ICT Incident Response & Reporting, Third Party Risk Management and resilience testing). The DORA Consultant will be part of the team responsible for analysing, designing, implementing, and governing processes and technologies related to the DORA compliance. The candidate will have the following duties/responsibilities: Support implementation of DORA (Digital Operational Resilience Act), to ensure compliance with DORA regulations by mid-January 2025; Perform system and process assessment and provide analysis and guidance; Support the design and delivery of potential solutions, new automations of assessments/templates and workflows and integration into existing technology landscape; Oversee the implementation of key works streams and approved process improvements; Work closely with all business functions to facilitate compliance with DORA requirements; Contribute to policies and procedures developments to ensure an effective internal governance and control framework; Support TPRM and Outsourcing remediation programmes; Support cybersecurity governance and documented information required for DORA; Support the establishment/alignment of the Resilience Testing framework; Support the alignment of ICT Incident Response and Reporting with DORA
