Grc Consultant Bilbao

Location: Zamudio_S21, Spain

Thales people architect identity management and data protection solutions at the heart of digital security. Business and governments rely on us to bring trust to the billons of digital interactions they have with people. Our technologies and services help banks exchange funds, people cross borders, energy become smarter and much more. More than 30,000 organizations already rely on us to verify the identities of people and things, grant access to digital services, analyze vast quantities of information and encrypt data to make the connected world more secure.

Thales in Spain is a leader in technological solutions applied to Defence, Aeronautics, Security, Transportation and Space and, furthermore, is a global centre for excellence in Space, Security of Critical Infrastructures and Transportation. With a turnover of €320 million and a staff of 1,200, it exports approximately 40% of its total production principally to the Middle East, North Africa and Latin America.

Thales S21sec requires a specialised support service for regulatory compliance, risk management, and cybersecurity governance. 
Act as a consultant, developing governance, risk management and regulatory compliance advisory projects, potentially leading their development, while expanding your knowledge of other applicable regulatory frameworks (NIST CSF, ISO 27001, ENS, ISO 22301, GDPR, PCI DSS, etc.) and evolving towards a senior role.
Job Responsabilities: 
- Assess the level of regulatory compliance within companies and organisations, and support the development and monitoring of cybersecurity plans, guides, standards and guidelines. 
- Capture relevant data to assess the risk level of organisations and support efforts to address risks. 
- Develop a common cybersecurity model based on recognised standards and frameworks, and create materials to facilitate its deployment. 
- Provide assistance in establishing and maintaining a governance framework for cybersecurity in various organisations and companies. - - Define and maintain a scorecard that provides a quantitative view of security levels.
Requisitos:
Ability to analyse and synthesise information 
Strong interpersonal and communication skills
 Proactivity and autonomy 
Critical thinking skills Teamwork 
Commitment to continuous improvement
A higher technical degree (in engineering or a similar subject), preferably in IT or telecommunications. 
Knowledge of cybersecurity in general. 
Experience of Governance, Risk Management and Compliance (GRC) in relation to frameworks such as PCI DSS, NIST CSF, ISO 27001, ENS, ISO 22301, NIS2 and DORA. 
Knowledge of technological cybersecurity, and experience in designing and implementing projects for deploying cybersecurity technologies. At least three years' experience in cybersecurity.
In hybrid mode, you will work from home as well as be present at office in Vitoria
Se ofrece:
Tell us what you want, and you will find it at S21sec. 
- Do you want 100% remote working to come to the office whenever you want?             
At S21sec you have it! 
- Would you like to have up to 41 days off per year?                                                              
At S21sec you can organise your working hours to increase the 24 days of holiday we offer you. How?
- You can spread your annual working hours over the year and enjoy one Friday off per month or 12 Fridays off per year. 
- You can choose between an intensive working day of 7 hours a day from Monday to Friday in July and August, or continue with the same working day as before and then add 5 days off to enjoy during the current year. 
- Do you want to maximise your salary?                                                                              
At S21sec you can decide which Flexible Remuneration package (Restaurant Card, Transport Card, Childcare Vouchers and Training Vouchers) best suits your needs. 
- Do you want to continue your training and expand your certifications?                                            
At S21sec we have an Annual Training Plan (based on technical certifications, languages, Soft Skills training...). 
- Do you want to work with clear and transparent objectives?                                           
At S21sec we have an Annual Bonus Policy, based on KPIs. 
If you are passionate about cybersecurity, we are the company for you. We are waiting for you!

At Thales we provide CAREERS and not only jobs. With Thales employing 80,000 employees in 68 countries our mobility policy enables thousands of employees each year to develop their careers at home and abroad, in their existing areas of expertise or by branching out into new fields. Together we believe that embracing flexibility is a smarter way of working. Great journeys start here, apply now!