Information Security Governance, Risk and Compliance Specialist (Cybersecurity)
Вакансия из Hirify Global, списка международных tech-компанийДля мэтча и отклика нужен Plus
Мэтч & Сопровод
Для мэтча с этой вакансией нужен Plus
Описание вакансии
TL;DR
Information Security GRC Specialist (Cybersecurity): Managing security compliance, frameworks, and vendor risk for a global data company with an accent on ISO 27001 certification and security trust portals. Focus on implementing security policies, conducting vendor assessments, and fostering a security-conscious culture.
Location: Hybrid in Athens, Greece (2 days per week in office)
Company
is a global data company providing deep insights into global realities through its data platform.
What you will do
- Own and maintain ISO 27001 certification and ensure compliance across relevant security frameworks.
- Develop, implement, and maintain information security policies and procedures aligned with industry best practices.
- Lead vendor risk management and handle client security assessments, including security questionnaires.
- Build and maintain the security trust portal to showcase credentials to stakeholders using tools like Drata or Vanta.
- Drive security awareness across the business through internal training and communications.
Requirements
- Must be based in Athens, Greece for hybrid work (2 days per week in office).
- 3–5 years of experience in an information security compliance role.
- Practical experience obtaining and maintaining ISO 27001 certification and solid knowledge of NIST.
- Proven ability to develop security policies and procedures based on industry standards.
- Experience conducting vendor security assessments and managing client onboarding requirements.
- Knowledge of SaaS and AI environments, including cloud security best practices.
Nice to have
- Familiarity with GRC tools such as Drata or Vanta.
Culture & Benefits
- 25 days of annual leave plus office closures during holidays.
- Health cash plan, enhanced family benefits, and mental health support.
- Competitive salary, reward and recognition programs, and a phone contract.
- Accredited learning, leadership development, and global career mobility.
- Strong commitment to DE&I initiatives and volunteering opportunities.
Будьте осторожны: если работодатель просит войти в их систему, используя iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →