Match Profiler is an Information Systems consultant who has been working in the national and international market since ****.
We have multidisciplinary skills and IT know-how that allow us to contribute, optimize and progress with our clients.
We are currently recruiting, for integration in our internal team/client, professionals with the following profile:IT Security Specialist GRC - Hybrid (Porto - 2 days/week)Hard skillsBachelor's degree in Cybersecurity, Information Technology, Computer Science, or a related3+ years of experience in Information Security GRCStrong knowledge of security frameworks (e.g., ISO *****, ISO*****, NIST, IEC *****)Familiarity with regulatory requirements such as GDPR, NIS2, etcExperience with risk management tools, compliance platforms, and security monitoring solutionsExperience conducting security audits and risk assessmentsUnderstanding of IT security principles, cloud security, and network securityAvailability to travel, mainly in EuropeFluent in English ResponsibilitiesAssist the ISO in implementing the information and cyber security strategy and programSupport the development and implementation of a risk management methodology aligned with company' strategy and policiesEnsure alignment between information and cyber security risk management and the company risk management frameworkProvide guidance and support on information and cyber security risk management activitiesAssess the effectiveness of security controls in IT and OT environmentsMonitor information and cyber security risks by evaluating control implementation, asset vulnerabilities, threat landscapes, and security incidentsReport risk trends to Risk Owners and other relevant committeesDevelop and maintain security documentation, including standards, processes, procedures, guidelines, contractual clauses, and control catalogsDesign and maintain an unified IT and OT security architecture aligned with the overall security strategyEstablish a security architecture repository: principles, terminology, security services, control frameworks, and reference modelsSupport first-line teams in identifying and addressing cyber security risks and requirements in new products, projects, processes, and servicesDevelop and implement security education, training, and awareness programs to foster security-conscious behaviors across IT and OT environmentsProvide evidence of risk oversight and control implementation for internal and external auditsCommunicate the status and progress of the security program to key stakeholdersMonitor compliance with security architecture and standards.Collect and analyze key performance and effectiveness metrics to support decision-making and inform the ISO.
Soft skillsGood communicationTeam spiritProactivityTime managementWhat we can offerPersonalized support from your teamYour manager will take into consideration your motivations and suggestionsVictories will be celebrated togetherYour HR and Support Teams will always be available to helpConstant feedback on your workA network of hundreds of partnerships with companies from numerous sectors that offer you exclusive discounts (health, well-being, travel, gastronomy, culture, leisure, training, etc)And, of course, many gatherings and social events