




Job Summary: Ciberia is seeking a GRC Consultant to architect and maintain ISO 27001 and ENS systems, collaborate on business continuity initiatives, and conduct internal audits. Key Highlights: 1. Redefine the future of AI-driven cybersecurity 2. Work in an environment of strategic projects and cutting-edge technology 3. Google Premier Partner for Cybersecurity in EMEA and LATAM **Description:** ---------------- **Join Ciberia and redefine the future of AI-driven cybersecurity!** We invite you to become part of Ciberia, the new global benchmark in managed cybersecurity services, powered by Artificial Intelligence and backed by Google Cloud Security. We are Google Premier Partner for Cybersecurity in EMEA and LATAM, with operations across 5 countries. If you seek an environment where your professional expertise directly impacts strategic projects and where you work with cutting-edge technology, this is the place for you. We are looking for a GRC Consultant to join our team. In this role, you will work closely with us to architect and maintain ISO 27001 and ENS systems, collaborate on business continuity strategies, and participate in high-impact internal audits. Your goal will be to help us transform regulatory compliance into real, effective protection for our clients. **What You’ll Do With Us:** * Collaborate on the implementation and maintenance of ISO 27001 and ENS frameworks, ensuring consistency between technical architecture and documentation. * Support projects under ISO 22301, including participation in Business Impact Analysis (BIA) and recovery plan development. * Conduct integrated internal audits covering security and privacy. * Draft necessary policies and procedures to ensure global compliance. **Requirements:** --------------- **What Are We Looking For?** * Experience: Minimum 3 years in GRC consulting for ISO 27001 and/or ENS projects. * Advanced knowledge of ISO 27001, ENS, ISO 22301, and GDPR, with ability to translate these requirements into both documentation and technical implementation. * Ability to connect technical controls (e.g., access management) with their direct impact on regulatory compliance. * English level B2\.


