Browse
···
Log in / Register
Job Summary: We are seeking a professional with experience in governance, risk, and security compliance, knowledge of regulations such as GDPR, ENS, NIS2, and ISO, and the ability to conduct audits and manage risks. Key Highlights: 1. Experience in ensuring compliance with regulatory requirements (GDPR, ENS, NIS2, ISO) 2. Skills in designing and implementing security alignment plans 3. Ability to identify risks and propose mitigation plans MANDATORY REQUIREMENTS: Applicants must demonstrate experience/knowledge in at least 4 of the following areas: * Organization and assurance of compliance with applicable regulations (GDPR, ENS, NIS2, ISO, CCN guidelines, etc.). * Design, monitoring, and implementation of NIS2, ENS, ISO27001, GDPR, or other security compliance standard alignment plans. * Internal and external audits of ENS, ISO27001, NIS2, GDPR, or other security compliance standard adherence. * Identification of operational, technological, and legal cybersecurity risks. * Definition of controls, tests, and evidence. * Proposal and follow-up of mitigation plans. * Collaboration in incident response. Certification as ISO27001 Lead Auditor, ISO22301 Lead Auditor, or equivalent. Fluent spoken and written Catalan (bilingual with Spanish). English proficiency: minimum B2 level. Work format: Hybrid, with 60% on-site presence in the Barcelona metropolitan area. DESIRABLE REQUIREMENTS: Knowledge/experience in business continuity plans and DRPs. Knowledge/experience in TPRM (Third-Party Risk Management). English certification: B2/C1 level. REQUIRED QUALIFICATION: University degree in computer science and telecommunications, law, business administration and management, or related fields. YEARS OF EXPERIENCE IN THE REQUIRED PROFILE: At least 4 years of documented experience in the field of technological systems, including at least 3 years of experience in governance, risk, and security compliance.
