At Hexa Consulting, we want to spread transparency and enable diverse tech careers. Based in Portugal, we can answer the increasing demand in the IT sector.
Our mission is to build strong relationships, be a leading partner through a differentiated approach in IT consulting, and contribute to the professional and personal development of our team.
We work with Nearshore projects, TM & Project Development, Service & Service Management, and Tech Academies.
Hexa Consulting is looking for an IT Risk Analyst.
Key Responsibilities:
Define, implement, and promote cybersecurity governance for IT Payment Services (IT PS).
Support IT PS teams in identifying, assessing, and managing cyber risks.
Oversee end-to-end cyber risk supervision across multiple entities (Cash Management, Customer Data Services, Electronic Payments, Factoring).
Identify, analyze, and monitor ICT and non-ICT risks, including root cause and impact analysis.
Contribute to operational risk activities (RCSA, incident analysis, control plans) to maintain an up-to-date risk landscape.
Track remediation plans, oversee corrective action implementation, and verify their effectiveness.
Report to CISO / ITRO / ICRO Payment, issuing alerts, proposing corrective actions, and providing consolidated risk reporting.
Support audits, risk assessments, and third-party risk management reviews.
Key Requirements:
3+ years of experience in IT / Cyber Risk Management or Operational Risk.
Strong knowledge of GRC tools, particularly ServiceNow.
Solid understanding of cybersecurity governance and risk frameworks.
Strong analytical skills, including root cause analysis and impact assessment.
Proficiency with Microsoft Office tools (Excel, PowerPoint, Word).
Language Requirements:
English: Fluent
Portuguese: Fluent
Location:
Porto (hybrid)
Why Hexa Consulting?
Friendly and fast-paced culture
Transparent communication and support from our team
Competitive compensation package
Send us your CV and let's talk!