IT RISK EXPERT (HYBRID LISBON)
Portuguese company hires for hybrid position
Location
: Lisbon, Portugal
Only candidates already based in Portugal will be considered
Work Model: On-site / Hybrid (Lisbon-based role)
Language Requirements: Fluent English
Seniority: Senior (6+ years of experience)
Client Sector: Financial, Banking
Instructions: Please send your CV in English and make sure to include all skills and experience that match the requirements of the opportunity.
This will significantly increase your chances of success
Role Context
To strengthen the IT Risk EMEA team, we are looking for an IT Risk Expert based in Lisbon.
This professional will join an international IT Risk organization, working closely with regional and corporate stakeholders to ensure robust IT and Cyber Risk management, governance, and reporting across multiple countries.
You will act as a key reference point for IT Risk, supporting governance frameworks, regulatory interactions, remediation initiatives, and executive-level reporting in a highly regulated environment.
Key Responsibilities
Act as the IT Risk referent for the assigned scope, liaising with Regional and Corporate IT Risk Officers;
Deploy and supervise IT Risk management practices, ensuring alignment with Group governance standards;
Lead andcoordinate IT & Cyber Risk governance, aligned with regional strategy and priorities;
Prepare,organize, and facilitate IT Risk and Cyber Risk committees;
Provide expert support to the CISO, including participation in architecture and security committees;
Identify, analyze, classify, and consolidate IT risks within the assigned entities;
Maintainand update the IT Risk register and risk mapping;
Ensure at least annual IT Risk reviews for all entities in scope;
Approve treatment plans for non-major IT risks and monitor remediation actions;
Follow up on control plans, ensuring proper execution and evidence collection;
Support responses to regulatory and supervisory requests related to IT and Cyber Risk;
Monitor progress of IT risk remediation projects and corrective actions;
Contribute tothe annual budget process from an IT Risk perspective;
Deliver regular reporting, alerts, and key risk indicators to senior stakeholders.
Mandatory Requirements
(All mandatory requirements must be clearly stated in the CV to be considered)**
5+ years of proven experience in IT Risk and Cyber Security;
Hands-onexperience with ServiceNow GRC – IT Risk module;
Strong expertise in IT Risk Governance, risk assessment, and remediation tracking;
Advancedskills in Microsoft Excel and PowerPoint (reporting, dashboards, executive presentations);
Excellent written and verbal communication skills in multicultural environments;
Strong organizational skills with high attention to detail;
Ability to facilitate meetings, manage discussions, and lead negotiations;
Critical, structured, and analytical thinking;
Strong planning, prioritization, and deadline management skills.
Languages
English: Fluent / Mandatory
French: Nice to have
Soft Skills
Strong stakeholder management and influencing skills;
Ability to adapt and improve processes continuously;
High sense ofresponsibility, rigor, and quality focus;
Excellent listening and questioning capabilities;
Ability to work autonomously in complex, regulated environments.
Additional Information
Availability to travel within Portugal;
Availability to travel internationally when required.
List of keywords that must appear in your CV
List of keywords that must appear in your CV: IT Risk, Cyber Risk, IT Risk Governance, ServiceNow GRC, IT Risk Management, Risk Assessment, Risk Mapping, IT Risk Register, Cyber Security, Control Plans, Risk Remediation, Regulatory Compliance, CISO Collaboration, IT Governance, Microsoft Excel, PowerPoint, English Fluent, French, Lisbon.
CI - PROC*****