IT Security Governance & Compliance Specialist

We are looking for an experienced IT Security Governance & Compliance Specialist to strengthen our team in Prague. You will be responsible for supporting our clients in the implementation and management of regulatory frameworks such as ISO 27001 and NIS2, and other IT governance-related initiatives. The role includes compliance assessments, remediation plan development, implementation of measures.

Role: IT Security Governance & Compliance Specialist
Location: Prague / Czech Republic (Hybrid preferred)
Language: Czech (fluent), English (professional working proficiency)
Start Date: ASAP
Contract Type: B2B
Allocation: Full-time
Duration: Long-term

Key Responsibilities:
• Design and implement IT governance and security processes in line with ISO 27001 and NIS2
• Lead and support IT audits (compliance assessments)
• Define and monitor IT controls, ensure proper documentation and accountability
• Collaborate with IT teams and business stakeholders to assess and mitigate IT risks
• Recommend and track implementation of security and regulatory controls
• Support digital resilience efforts and compliance frameworks adoption
• Provide reporting and materials to management, regulators, and auditors

Must-Have Requirements:
• 5+ years of experience in IT Governance, Risk, or Security Compliance roles
• Proven track record with regulatory frameworks (DORA, NIS2, ISO 27001, etc.)
• Practical experience with IT audit support and risk management methodologies
• Strong understanding of ITIL processes (certification is a plus)
• Experience working with banks, telco, or regulated environments
• Fluent Czech and professional English
• Strong communication, documentation, and coordination skills

Nice to Have:
• Experience with implementation of GRC tools
• Understanding of risk and business continuity management