Plus
Включить Plus
Назад
Company hidden
23 часа назад

Information Security Analyst (GRC & ISMS)

Формат работы
hybrid
Тип работы
fulltime
Английский
c1
Страна
Spain
Релокация
Spain
Вакансия из списка Hirify.GlobalВакансия из Hirify Global, списка международных tech-компаний
Для мэтча и отклика нужен Plus

Мэтч & Сопровод

Для мэтча с этой вакансией нужен Plus

Описание вакансии

Текст:
/

TL;DR

Information Security Analyst (GRC & ISMS): Maintaining and evolving the corporate Information Security Management System (ISMS) with an accent on regulatory compliance, risk management, and internal/external audits. Focus on implementing ISO/IEC 27001, ENS, and NIS2 standards, developing security KPIs, and managing third-party risks.

Location: Hybrid in Tres Cantos, Madrid, Spain. Relocation package available.

Company

hirify.global is a global technology corporation specializing in cybersecurity compliance and security frameworks for regulated environments.

What you will do

  • Maintain and evolve the corporate Information Security Management System (ISMS).
  • Manage compliance with regulations and standards such as ISO/IEC 27001, ENS, and NIS2, including handling audits.
  • Define and monitor security metrics, KPIs, KRIs, and management dashboards.
  • Analyze and manage internal and third-party risks while promoting mitigation initiatives.
  • Develop and review security policies, methodologies, and documentation.
  • Support security committees, management reviews, and ISMS governance activities.

Requirements

  • Experience in Governance, Risk & Compliance (GRC), ISMS, audit processes, and risk treatment plans.
  • Knowledge of security regulations and standards (ISO/IEC 27001, ENS, NIS2).
  • Proficiency in risk assessment and management methodologies.
  • Experience with security requirements for suppliers and third parties.
  • High level of English proficiency required.
  • Must be based in or able to relocate to Spain.

Nice to have

  • Certifications such as CISM, CRISC, CISSP, CISA, or ISO/IEC 27001 Lead Auditor.
  • Knowledge of operational resilience and business continuity frameworks.
  • Experience working in regulated environments or critical infrastructure sectors.

Culture & Benefits

  • Hybrid working model with 4 weeks per year of teleworking outside your usual geographical area.
  • Flexible start and finish times, with intensive working hours on Fridays and during summer.
  • Personalized career development, training, and language learning support.
  • Relocation package for international candidates.
  • Wellbeing program including health, dental, and accident insurance.

Будьте осторожны: если работодатель просит войти в их систему, используя iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →