Talent.com
Esta oferta de trabalho já não está disponível no seu país.
IT Security Specialist (Governance, Risk & Compliance)

IT Security Specialist (Governance, Risk & Compliance)

VoltaliaPorto, Porto, Portugal
Há +30 dias
Descrição do cargo

At Voltalia we are passionate about renewable energies! We are an electricity producer from wind, solar, hydro, biomass and storage and also a service provider to 3rd party clients such as Development, EPC, O&M and Distribution. Today we are in 20 countries, split among 4 continents, and offering a global operating capacity to our clients. We are listed on the regulated Euronext market in Paris since July 2014.

Our IT Security and Infrastructure Team is looking for an IT Security Specialist GRC .

The IT Security Specialist GRC (Governance, Risk, and Compliance) is responsible for overseeing governance, risk, and compliance aspects of information and cyber security. It plays a key role in promoting security best practices across VOLTALIA and requires support from Executive Committee Members, business managers, and IT leaders. Led by the Information Security Officer (ISO), this function has the following responsibilities :

Information and Cyber Security Strategy & Policy

  • Assist the ISO in implementing the information and cyber security strategy and program.

Information and Cyber Security Risk Management

  • Support the development and implementation of a risk management methodology aligned with VOLTALIA’s objectives, overall risk strategy, and regulatory requirements.
  • Ensure alignment between information and cyber security risk management and VOLTALIA’s enterprise risk management framework.
  • Provide guidance and support on information and cyber security risk management activities.
  • Assess the effectiveness of security controls in IT and OT environments.
  • Monitor information and cyber security risks by evaluating control implementation, asset vulnerabilities, threat landscapes, and security incidents.
  • Report risk trends to Risk Owners and other relevant committees.

    • Security Standards & Architecture

  • Develop and maintain security documentation, including standards, processes, procedures, guidelines, contractual clauses, and control catalogs.
  • Design and maintain a unified IT and OT security architecture aligned with the overall security strategy.
  • Establish a security architecture repository, including principles, terminology, security services, control frameworks, and reference models.

    • Security by Design

  • Support first-line teams in identifying and addressing cyber security risks and requirements in new products, projects, processes, and services.

    • Security Awareness & Training

  • Develop and implement security education, training, and awareness programs to foster security-conscious behaviors across IT and OT environments.

    • Audit & Compliance Support

  • Provide evidence of risk oversight and control implementation for internal and external audits.
  • Communicate the status and progress of the security program to key stakeholders.
  • Monitor compliance with security architecture and standards.
  • Collect and analyze key performance and effectiveness metrics to support decision-making and inform the ISO.

    • REQUIREMENTS

    The ideal candidate will have / be :

  • Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related field.
  • 3+ years of experience in Information Security GRC.
  • Strong knowledge of security frameworks (e.g., ISO 27001, ISO27005, NIST, IEC 62443).
  • Familiarity with regulatory requirements such as GDPR, NIS2, etc.
  • Experience with risk management tools, compliance platforms, and security monitoring solutions.
  • Experience conducting security audits and risk assessments.
  • Understanding of IT security principles, cloud security, and network security.
  • Certifications such as CRISC, CISA, ISO 27001 Lead Auditor / Implementer, ISO 27005 Risk Manager (preferred).
  • Possible travel, mainly in Europe.

    • KEY SKILLS

  • Challenges-driven, rigorous, strong commitment, and investment.
  • Excellent analytical and problem-solving skills with the ability to assess and prioritize security risks.
  • Willing to develop new skills and competencies.
  • Comfortable working with high autonomy and as a team player.
  • High level of integrity and ability to handle sensitive and confidential information.
  • Very well organized. Able to manage and prioritize time and multiple tasks efficiently, especially when operating under pressure or deadlines.
  • Strong communication and collaboration skills to work effectively with cross-functional teams and external stakeholders. Know how to adapt your communication.
  • Passionate about cybersecurity and staying up-to-date on the latest threats and trends.

    • BUSINESS LINE

    HR & Corporate Functions

    CONTRACT TYPE

    Not defined yet

    CONTRACT DURATION

    LOCATION

    Portugal, Porto

    STARTING DATE

    Mar 25

    #J-18808-Ljbffr

    Criar um alerta de emprego para esta pesquisa

    It Specialist • Porto, Porto, Portugal

    Vagas relacionadas
    • Divulgado
    • Novo!
    IT Compliance Officer

    IT Compliance Officer

    ContinentalPorto, Porto, Portugal
    We are looking for an IT Compliance Manager (m / f / diverse) for the locations Porto or Timişoara with the following responsibilities : . Compliance Framework Development and Management.Design and implem...Mostre maisÚltima atualização: 14 horas atrás
    • Divulgado
    • Novo!
    IT Risk Register Officer

    IT Risk Register Officer

    Axians PortugalPorto, Porto, Portugal
    At Axians, we value talent, not labels.We believe in a culture of inclusion, where everyone has a place and all applications are considered based on merit, without discrimination.This is your oppor...Mostre maisÚltima atualização: 14 horas atrás
    • Divulgado
    Solutions Architect

    Solutions Architect

    Adentis PortugalAveiro, Aveiro, Portugal
    The ideal candidate will be responsible for working cross-functionally to understand architecture needs by multiple business units. To be effective in this position, you must feel comfortable owning...Mostre maisÚltima atualização: 14 dias atrás
    • Divulgado
    EMEA Sales Director, ISV Embedded Solutions

    EMEA Sales Director, ISV Embedded Solutions

    CanonicalAveiro, Aveiro, Portugal
    Canonical is a leading provider of open source software and operating systems to the global enterprise and technology markets. Our platform, Ubuntu, is very widely used in breakthrough enterprise in...Mostre maisÚltima atualização: há mais de 30 dias
    • Divulgado
    Security Operations Center Analyst

    Security Operations Center Analyst

    HN Services PortugalPorto, Distrito de Porto, Portugal
    We are seeking a Level 2 Cybersecurity Analyst to join our SOC team.You will be responsible for investigating and responding to security incidents, mentoring Level 1 analysts, and strengthening def...Mostre maisÚltima atualização: 9 dias atrás
    IT Security GRC Specialist

    IT Security GRC Specialist

    WIRE ITPorto, Portugal
    Quick Apply
    Based in Portugal, Wire IT is your specialized IT consulting partner with 18 years of experience driven by an experienced and senior team that helps clients make the right decisions in a fast-movin...Mostre maisÚltima atualização: há mais de 30 dias
    Regional IT Security Architect

    Regional IT Security Architect

    LUZA Group PortugalMatosinhos, 13, pt
    Quick Apply
    Job Title : Regional IT Security Architect.Location : Matosinhos, Porto, Portugal.Work Regime : Full-time & Hybrid.Hybrid regime (2 days in the office and 3 days at home).Flexible hours (8h / d...Mostre maisÚltima atualização: 7 dias atrás
    • Divulgado
    Head of IT Compliance & Risk Management (m / f / d) Original Equipment Solutions - REF81073E

    Head of IT Compliance & Risk Management (m / f / d) Original Equipment Solutions - REF81073E

    ContinentalPorto, Porto, Portugal
    Original Equipment Solutions (OESL) is emerging as a stand-alone global leader in the automotive sector, with over 17,000 employees and €2 billion in annual sales. Operating in 15 countries across 3...Mostre maisÚltima atualização: há mais de 30 dias
    • Divulgado
    Cloud Solutions Architect - Alliances

    Cloud Solutions Architect - Alliances

    CanonicalAveiro, Aveiro, Portugal
    Canonical is a leading provider of open source software and operating systems to the global enterprise and technology markets. Our platform, Ubuntu, is very widely used in breakthrough enterprise in...Mostre maisÚltima atualização: 28 dias atrás
    • Divulgado
    IT Security Architect

    IT Security Architect

    QUANTEAM - Portugal (RAINBOW PARTNERS Group)Porto, Distrito de Porto, Portugal
    As the founding entity of RAINBOW PARTNERS, Quanteam is a consulting firm specializing in the fields of Banking, Finance, and Financial Services. Guided by our core values of closeness, teamwork, di...Mostre maisÚltima atualização: 6 dias atrás
    • Divulgado
    Senior Specialist CRM Analyst & Architecture (f / m / div)

    Senior Specialist CRM Analyst & Architecture (f / m / div)

    Infineon TechnologiesMaia, Porto, Portugal
    Do you like to translate customer requirements into IT solutions? Are you passionate about delivering the best experience to Infineon customers? If you have an eye for the big picture, like to brin...Mostre maisÚltima atualização: há mais de 30 dias
    • Divulgado
    Senior Security Engineer (M / F) - Aveiro

    Senior Security Engineer (M / F) - Aveiro

    AnkixAveiro, Distrito de Aveiro, Portugal
    Com mais de 25 anos de experiência no setor tecnológico, a Ankix destaca-se pela sua abordagem próxima, combinando estratégia orientada, inovação contínua e uma adaptação ágil às exigências do merc...Mostre maisÚltima atualização: 6 dias atrás
    • Divulgado
    IT Governance, Risk & Compliance

    IT Governance, Risk & Compliance

    HN Services PortugalPorto, Distrito de Porto, Portugal
    We’re looking for a IT Risk Officer (Porto / Lisboa).Manage and maintain the IT Risk Register, ensuring risk criteria (category, owner, impact, due dates, etc. Support the annual review of all IT risk...Mostre maisÚltima atualização: 6 dias atrás
    • Divulgado
    Application Support Specialist (L2 / L3)

    Application Support Specialist (L2 / L3)

    SOFYNE ACTIVE TECHNOLOGYMatosinhos, Porto, Portugal
    This role contributes to the success of Sofyne by providing global support services to our customers for Manufacturing Execution System projects from solution project design phase and implementatio...Mostre maisÚltima atualização: há mais de 30 dias
    • Divulgado
    Software Architect - Containers / Virtualisation

    Software Architect - Containers / Virtualisation

    CanonicalAveiro, Aveiro, Portugal
    Software Architect - Containers / Virtualisation.Software Architect - Containers / Virtualisation.Software Architect - Containers / Virtualisation. Be among the first 25 applicants.Software Architec...Mostre maisÚltima atualização: 27 dias atrás
    • Divulgado
    Senior Staff Specialist IT Business Consultant Procurement (f / m / div)

    Senior Staff Specialist IT Business Consultant Procurement (f / m / div)

    Infineon TechnologiesMaia, Porto, Portugal
    IT Business Consultant Procurement (f / m / div).IT Business Consultant Procurement (f / m / div).IT Business Consultant Procurement (f / m / div). Be among the first 25 applicants.IT Business Consultant Procur...Mostre maisÚltima atualização: há mais de 30 dias
    • Divulgado
    Senior Integration Architect

    Senior Integration Architect

    Descompagnons Trabalho Temporário LdaAveiro, Aveiro, Portugal
    Senior Integration Architect – Long Term Contract (Remote, Portugal-based).You will play a key role in designing and implementing. This role requires deep experience in.Occasional travel may be requ...Mostre maisÚltima atualização: 2 dias atrás
    • Divulgado
    Infrastructure Engineer

    Infrastructure Engineer

    UbiwhereAveiro, Distrito de Aveiro, Portugal
    Na Ubiwhere, investigamos e desenvolvemos tecnologia de ponta, criamos propriedade intelectual valiosa e concebemos soluções inovadoras para desafiar os limites das Cidades Inteligentes, Telecomuni...Mostre maisÚltima atualização: 10 dias atrás