Senior Information Security Risk Consultant
Barcelona, Spain
CyberVadis
Mitigate third-party cyber risks with confidence. CyberVadis offers scalable, evidence-based cybersecurity assessments to help businesses secure their supply chain and enhance their cybersecurity compliance. Trusted by enterprises worldwide....Core responsibilities
We are looking to recruit a Senior Information Security Risk Consultant with the following responsibilities:
Understand organizations’ context and assess companies’ cybersecurity posture.
Review specific complex areas and security controls identified by first level analysts and ensure the global relevancy of the assessment with special focus on the improvement plan issued to the company.
Contribute to the evolution of the CyberVadis framework aligned with the main industry standards and regulations (NIST CSF, ISO 27001, GDPR…).
Organize workshops and participate in specialized cybersecurity events.
Collaborate on the enhancement of the cybersecurity assessment model performance.
Analyze CyberVadis assessment results and build specialized cybersecurity papers and studies.
Research on emerging cybersecurity trends, applicable standards, laws and regulations impacting our solution and customers’ needs.
Interact and assist internal and external stakeholders to ensure track of assessments and customers’ expectations are met.
Coach, facilitate work-related and communicate clear instructions to analysts listening to their feedback.
Knowledge and competences required
Master or Engineer in Computer Science or other relevant degree is preferable
+2-3 years of experience in Information Security or others IS/IT jobs
Knowledge of Information Security standards and frameworks (i.e. ISO 27001 and 27002, NIST CSF…), as well as specific regulations (NIS2, DORA, GDPR, PCI DSS…).
Ability to analyze technical documentation and professional skepticism to ensure that enough evidence are provided when assessing the relevant controls
Excellent written and verbal communication skills, customer service experience and problem solving skills, patience and understanding, investigation & diagnostic skills, excellent analytical & organization skills, ability to systematize and prioritize.
Advanced interpersonal skills to effectively promote ideas and collaboration at the various levels of the organization
Ability to deal with multiple tasks and work in a dynamic multi-cultural environment
Fluent written and spoken English. French, Spanish or other languages are desired.
This job description is not exhaustive. It may be required additional tasks depending on the manager requirements and the company itself.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Computer Science GDPR ISO 27001 NIS2 NIST PCI DSS
Perks/benefits: Team events
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.