Job Title: Cybersecurity and IT Resilience Specialist
Hexa-Consulting is seeking a skilled Cybersecurity and IT Resilience Specialist to join our team on a hybrid working model. This role requires onsite presence 2–3 times per week in Lisbon, Porto, or Braga.
Key Responsibilities:
* Conduct risk assessments by identifying system, process, and IT architecture vulnerabilities.
* Evaluate IT systems to detect risks, weaknesses, and critical points related to business continuity.
* Develop and implement cybersecurity and IT disaster recovery strategies aligned with organizational objectives.
* Design and document disaster response and recovery plans, including technologies, processes, and human resources.
* Identify suitable recovery strategies for various scenarios (e.g., system failure, data loss, infrastructure outage, ransomware).
* Support the creation of governance models with clear roles, responsibilities, and communication flows related to security and operational resilience.
* Collaborate on the development of operational and technical procedures (e.g., architecture diagrams, process flows, checklists).
* Participate in and support test exercises, simulations, and tabletop drills to validate and continuously improve implemented measures.
* Work closely with IT, information security, business continuity, and compliance teams to promote an integrated approach to organizational resilience.
* Monitor trends and best practices in cybersecurity, IT resilience, and disaster recovery, proposing improvements based on recognized standards and frameworks.
Required Skills and Qualifications:
* Minimum 2 years of experience in cybersecurity or IT projects, ideally involving business continuity, disaster recovery, or incident management.
* Solid understanding of system architectures, networks, and critical infrastructures (on-premises and cloud).
* Ability to assess technological risks and identify critical dependencies in information systems.
* Practical knowledge of Business Impact Analysis (BIA) and its application in recovery planning.
* Experience producing technical documentation: plans, operational procedures, process flows, diagrams.
* Familiarity with IT disaster recovery tests, tabletop exercises, and incident simulations.
* Strong collaboration skills to work across infrastructure, security, business, and compliance teams.
* Excellent written and verbal communication skills with attention to detail in formal documentation.
* English & Portuguese proficiency: B2+ level (mandatory).