Contribute to the definition, implementation, and continuous improvement of the cybersecurity governance framework, including policies, procedures, and controls aligned with international standards and regulatory requirements (e.g. ISO/IEC 27001, NIST CSF, COBIT, GDPR, DORA)
Support Business Continuity Management (BCM) and IT Disaster Recovery (DR) activities, contributing to Business Impact Analyses (BIA) activities, critical asset dependency mapping, the definition and maintenance of Recovery Time and Recovery Point Objectives (RTOs/RPOs) and participation in business continuity and IT Disaster Recovery tests and exercises (e.g. tabletop simulations)
Perform security audits, gap analyses, and cyber risk assessments, identifying remediation actions and supporting their execution with relevant stakeholders
Participate in third-party and resilience assessments, as well as security assessments of emerging technologies, including Artificial Intelligence (AI) solutions
Support cybersecurity awareness initiatives, training programs, and onboarding activities related to security topics

2+ years of experience in cybersecurity governance, risk, compliance, or security assurance roles, preferably in regulated and technology-driven environments.
Familiarity with Business Continuity Management (BCM) and IT Disaster Recovery (DR) concepts, including participation in Business Impact Analyses (BIA), critical asset dependency mapping, definition of RTOs and RPOs and Disaster Recovery tests or exercises
Familiarity with Artificial Intelligence (AI) technologies and their associated governance, risk, compliance, and security considerations, including the assessment and oversight of AI-enabled systems
Proven knowledge of major cybersecurity frameworks (e.g., ISO/IEC 27001, NIST CSF) and regulatory landscapes (GDPR, DORA)
Strong English communication skills, with the ability to collaborate effectively with multidisciplinary teams

Cyber Security Governance Specialist

Key skills