




Job Summary: We are seeking a Technical GRC Specialist to participate in the definition, implementation, and oversight of the security and compliance framework for international projects. Key Highlights: 1. Key participation in international GRC projects. 2. Dynamic and collaborative environment. 3. Role with visibility and responsibility. At Excelia, a multinational consulting, technology, and professional services firm with over 25 years of experience and presence in more than 50 countries, we are looking to hire a Technical GRC Specialist to strengthen our Security & Fraud team. This is a key role in international Governance, Risk, and Compliance (GRC) projects within a dynamic and collaborative environment. Fully remote work mode from Spain. **YOUR MISSION** ------------- Participate in the definition, implementation, and oversight of the security and compliance framework, ensuring integration of security controls into business and technological processes. **RESPONSIBILITIES** ------------- * Define and analyze Information Security requirements for IT and business. * Collaborate with IT and Cybersecurity teams on implementing security controls. * Participate in Governance, Risk, and Compliance (GRC) processes. * Serve as the technical liaison with the Data Protection department. * Define and monitor Information Security KPIs and OKRs. * Contribute to the development of the Master Security Plan and ISMS. * Participate in corporate risk management and business continuity activities. * Audit compliance with ISMS policies, procedures, and controls. * Audit IT and business processes, products, and services. * Cross-functional collaboration on GRC and cybersecurity initiatives. **REQUIREMENTS** -------------- * Technical education (e.g., Computer Engineering, Telecommunications, or related field). * Minimum English proficiency level B2. * Knowledge of security frameworks: + ISO 27001 + NIST + ENS + PCI\-DSS + NIS2 + DORA * Experience in project management. * Familiarity with IT environments and information security. * Soft skills: communication, proactivity, autonomy, assertiveness. * Valuable certifications: CISA / CISM / CISSP or similar. **PREFERRED QUALIFICATIONS** --------------- * Experience in the Travel & Hospitality sector. * Experience in audits (first- and second-party). * Applied cybersecurity knowledge. * Agile / Scrum methodologies. * Experience in multinational GRC environments. **WHAT WE OFFER** ----------------- * High-impact international project. * Collaborative and multicultural environment. * Role with visibility and responsibility. * Stable employment with an international company. * Competitive salary band aligned with experience. * Flexible compensation. * Continuous training in GRC and security. * Flexible working hours. * Fully remote work with occasional travel. **Do you want to join this international project within the Security & Fraud area? Work alongside global teams on strategic initiatives in compliance, risk, and information security. We want to meet you!**


