This is an on-site opportunity in LisbonAs a GRC Consultant, you will work for our client, one of the largest TIC companies globally. You will be responsible for engagements related to policy compliance, security requirements governance, as well as risk management.Your main responsibilities: advise on security matters:Continuously evaluate and improve the maturity level of the information security framework of ongoing projectsDevelop, maintain, comply with, and measure organizations' adherence to information security policies and processesEvaluate the compliance of the internal security framework with the standards and legal requirements, identifying gaps and structuring action plansSupport information security audits and manage action plansConduct information security due diligencePromote an information security culture suitable for organizations through awareness-raising and training actionsBe part of the definition, development, and implementation of Information Security projects, risk analysis, business continuity, and/or data protectionPerform information security risk assessments, business impact assessments (BIA), and data protection assessments (DPA)Perform information security compliance and maturity assessments, using international standards and best practices from various sectorsIdentify, analyze, and implement information security controlsManage compliance levels according to international standards (ISO 27001, ISO 22301, PCI-DSS, COBIT, GDPR, ITIL)Manage processes and business continuity plans in accordance with best practices (e.g., ISO 22301)Develop and present reports with results of ongoing projectsSupport the management of the consulting areaYou're ideal for the role if you have:At least 5 years of experience in GRCNotions of project managementTechnical knowledgeAcademic training in areas of information securityRelevant knowledge of risk and international standards and good cybersecurity practicesMindset oriented towards risk mitigation, internal audits, and good practicesGood communication skills in Portuguese and EnglishKnowledge of security standards and frameworks, such as ISO 27001/2, NIST CSF, and othersAnalytical capabilitiesAbility and flexibility to adapt to different contextsCertifications will be valued as well as experience in the field of Consulting and Auditing#GETREADY to meet with us!If you are interested, please apply and attach your CV in English or Portuguese, including a statement that you agree to our processing and storing of your personal data. You can also apply by sending us an email at ******:LARGO DO DUQUE DE CADAVAL 17, 1200-160 LISBOA
#J-18808-Ljbffr