At Hexa Consulting, we want to spread transparency and enable diverse tech careers. Based in Portugal, we can answer the increasing demand in the IT sector.Our mission is to build strong relationships, be a leading partner through a differentiated approach in IT consulting, and contribute to the professional and personal development of our team.We work with Nearshore projects, TM & Project Development, Service & Service Management, and Tech Academies.Hexa Consulting is looking for anIT Risk Analyst.Key Responsibilities:Define, implement, and promote cybersecurity governance for IT Payment Services (IT PS).Support IT PS teams in identifying, assessing, and managing cyber risks.Oversee end-to-end cyber risk supervision across multiple entities (Cash Management, Customer Data Services, Electronic Payments, Factoring).Identify, analyze, and monitor ICT and non-ICT risks, including root cause and impact analysis.Contribute to operational risk activities (RCSA, incident analysis, control plans) to maintain an up-to-date risk landscape.Track remediation plans, oversee corrective action implementation, and verify their effectiveness.Report to CISO / ITRO / ICRO Payment, issuing alerts, proposing corrective actions, and providing consolidated risk reporting.Support audits, risk assessments, and third-party risk management reviews.Key Requirements:3+ years of experience in IT / Cyber Risk Management or Operational Risk.Strong knowledge of GRC tools, particularly Service Now.Solid understanding of cybersecurity governance and risk frameworks.Strong analytical skills, including root cause analysis and impact assessment.Proficiency with Microsoft Office tools (Excel, Power Point, Word).Language Requirements:English:FluentPortuguese:FluentLocation:Porto (hybrid)Why Hexa Consulting?Friendly and fast-paced cultureTransparent communication and support from our teamCompetitive compensation package