Cyber Risk

We’re looking for a Cloud Security Risk (Porto / Lisboa)

Who We're Looking For :

Review, challenge, and contribute to risk assessments based on ISO 27005 / EBIOS Risk Manager , ensuring effective remediation and risk reduction.

Actively participate in the risk assessments of cloud platforms and cloud applications .

Challenge and monitor remediation plans implemented by service providers or entities.

Ensure data quality and completeness of the Cloud Assets Register and Cloud Risks Register in ServiceNow .

Prepare, improve, and provide risk reporting templates using ServiceNow or BI tools (e.g. Tableau).

Support the preparation of quarterly cloud risk committees .

Contribute to third-party onboarding risk assessments and case study reviews.

Support miscellaneous governance and organisational topics related to the cyber risk team.

✅ Professional Experience & Technical Skills :

Solid knowledge of risk management methodologies (ISO 27005 and / or EBIOS Risk Manager). Certification is a plus.

Hands-on expertise with ServiceNow or similar risk management tools.

Good understanding of cloud principles (AWS, Azure, GCP).

Strong analytical and reporting skills.

Previous experience in a Cybersecurity GRC (Governance, Risk & Compliance) role.

Language Requirement

English – B2

Work Setup

Hybrid