Cybersecurity Analist (Global, Risk & Compliance) España
2025-12-16
España, España
Descripción de la oferta
Proceso de selección continuo.FuncionesWe are looking for a Cyber GRC Specialist to join our team remotely from Spain. The role is part of the Cyber GRC (Global, Risk & Compliance) team, focusing on ensuring cybersecurity governance and compliance. Location: Spain. Work Mode: Remote. English level B2/C1 is required and CV must be submitted in English. Job Functions · Analyze and understand cybersecurity controls defined in the maturity model, as well as in Group policies and standards. · Assess, together with technical teams, the actual implementation of controls, verifying alignment with established requirements. · Document existing controls following the defined format (objective, frequency, RACI, operation, monitoring, evidence). · Identify gaps and propose improvements to strengthen effectiveness and maturity of controls. · Monitor compliance indicators (Qualys) across different technologies: LS, BD, network, security, etc. · Coordinate and manage remediation processes with technical teams. · Evaluate and manage requests for exceptions, participating in final approval with Regulatory Framework & Compliance. · Ensure internal compliance scanning infrastructure (scanners, agents, and all necessary components) is deployed, maintaining proper visibility of the network (hosts and services) to guarantee service delivery.Requisitos· Degree in Computer Engineering, Computer Science, or similar. · Minimum 2 years of experience in relevant fields. · High level of English (at least B2). · Basic understanding of security frameworks and compliance regulations. · Knowledge of Cybersecurity Risk Governance (holistic approach, cyber metrics, golden source HERACLES, etc.), ensuring alignment with company strategy and metrics. · Ability to follow and control management of cyber audits and recommendations. · Strong communication skills to maintain open collaboration with local focal points and global cybersecurity teams. · Technical knowledge in basic systems and networks. · Experience with compliance or vulnerability management tools (Qualys, Nessus or similar). · Proficiency in Office Suite (Excel, Word) and basic knowledge of reporting tools such as Power BI. · Other tools positively valued: CyberArk. · Strong analytical and problem-solving skills. · Eagerness to learn.Se ofrece· Permanent contract. · 23 vacation days. · Flexible compensation (meal vouchers, health insurance, childcare…). · Exclusive discounts at Fnac, theater, cinema, Booking, and more. · Access to 1,000+ gyms with Gympass. · “Bring a Friend” referral program with bonus. · All necessary equipment provided. · Continuous training and official certifications.
Proceso de selección continuo.FuncionesWe are looking for a Cyber GRC Specialist to join our team remotely from Spain. The role is part of the Cyber GRC (Global, Risk & Compliance) team, focusing on ensuring cybersecurity governance and compliance. Location: Spain. Work Mode: Remote. English level B2/C1 is required and CV must be submitted in English. Job Functions · Analyze and understand cybersecurity controls defined in the maturity model, as well as in Group policies and standards. · Assess, together with technical teams, the actual implementation of controls, verifying alignment with established requirements. · Document existing controls following the defined format (objective, frequency, RACI, operation, monitoring, evidence). · Identify gaps and propose improvements to strengthen effectiveness and maturity of controls. · Monitor compliance indicators (Qualys) across different technologies: LS, BD, network, security, etc. · Coordinate and manage remediation processes with technical teams. · Evaluate and manage requests for exceptions, participating in final approval with Regulatory Framework & Compliance. · Ensure internal compliance scanning infrastructure (scanners, agents, and all necessary components) is deployed, maintaining proper visibility of the network (hosts and services) to guarantee service delivery.Requisitos· Degree in Computer Engineering, Computer Science, or similar. · Minimum 2 years of experience in relevant fields. · High level of English (at least B2). · Basic understanding of security frameworks and compliance regulations. · Knowledge of Cybersecurity Risk Governance (holistic approach, cyber metrics, golden source HERACLES, etc.), ensuring alignment with company strategy and metrics. · Ability to follow and control management of cyber audits and recommendations. · Strong communication skills to maintain open collaboration with local focal points and global cybersecurity teams. · Technical knowledge in basic systems and networks. · Experience with compliance or vulnerability management tools (Qualys, Nessus or similar). · Proficiency in Office Suite (Excel, Word) and basic knowledge of reporting tools such as Power BI. · Other tools positively valued: CyberArk. · Strong analytical and problem-solving skills. · Eagerness to learn.Se ofrece· Permanent contract. · 23 vacation days. · Flexible compensation (meal vouchers, health insurance, childcare…). · Exclusive discounts at Fnac, theater, cinema, Booking, and more. · Access to 1,000+ gyms with Gympass. · “Bring a Friend” referral program with bonus. · All necessary equipment provided. · Continuous training and official certifications.