Job Overview
">
Vendor Risk Specialist in Cyber
">
As a member of our European team based in Portugal, you will play a key role in managing vendor risks related to cyber and contingency.
">
">
* Review and challenge inherent risk scoring of critical services.
">
* Certify vendors, establish remediation plans, and issue residual risk ratings.
">
* Collaborate with the local CISO team on risk assessment results and continuous improvement.
">
* Provide periodic reporting to local stakeholders.
">
">
Key Responsibilities
">
The position requires proven experience in security governance and risk management, along with a solid education in cybersecurity and information technology.
">
">
* 3-5 years of experience in cybersecurity or IT risk/audit.
">
* Knowledge of information technology and security certifications (ISAE 3000, SOC 2, NIST CSF, ISO/IEC 27001).
">
* Communication skills in Portuguese and English, with Spanish desirable.
">
* Ability to manage multiple tasks simultaneously and work effectively in a team environment.
">
* Excellent writing and communication skills, with attention to detail and analytical abilities.
">
* Capacity to work with diverse teams and handle people well.
">
">
International Certifications or Master's Degree
">
International certifications or a master's degree in cybersecurity, control of information systems, or business continuity will be valued positively.
">
We strive to maintain a strong risk culture, encouraging personal responsibility for identifying and managing risks. We provide training and tools to support your growth as a Risk Pro.
">
Under the terms of applicable law, we have a whistleblowing channel available to report any concerns or issues.
"],