Cyber Security Risk Manager
hace 2 semanas
**Cyber Security Risk Manager - Contract 6 Months (with potential to extend to 2 years) - Barcelona**
**Why this role might be of interest**
The role has come about because the company, a highly successful and rapidly expanding international pharmaceutical business, is putting in place a brand new internal team to manage cyber security threats.
Because of this whoever takes on this role will work with a lot of autonomy, and have a lot of influence on how cybersecurity operations are developed. It's a high profile role where you will be able to make a real difference in how this company manages and develops it's internet security strategy.
Whilst you'll be part of the initial start up team, there are plans to grow it further, so there is the potential for career progression.
**Working practice**
**95% of your work will be done remotely, with occasional meetings in Barcelona, so if you live in another part of Spain and can travel to Barcelona on an occasional basis, then this role may also suit you.**
We are actually looking to fill two roles:
**Governance and Risk Management Expert**:Strong background in governance and risk management.Experienced in writing and designing policies and procedures.Has implemented GRC systems.
**Security Risk Assessment Specialist**:Proficient in conducting Security Business Impact Assessments, Threat and Vulnerability Assessments, and security controls assessments.Capable of assisting with policy and procedure design, with a focus on conducting assessments post-approval of Security BIA and Risk Management SOPs.
Interested in finding out more?
Full spec below:
The Role
We’re looking for a contractor to join our Cyber Security Team as an Information Security Risk Manager. You will be responsible for assessing, reporting and managing information security risks identified in the copmpany's systems and data, business processes and third party service providers.
You will work closely with IT colleagues, business stakeholders based at multiple locations in Europe, USA and Japan. The minimum duration of the contract is six months, with potential for extension.
We Need a “Pragmatic” and “Driven By Results” Information Security Risk Manager who can:
- Support the design and improvement of the information security framework (ISF): policies, controls, procedures using the NIST Cyber Security Framework; including third party risk management.
- Assess new and existing systems, data flows, business processes, and third party providers engagements and services to implement and verify compliance to the ISF reporting identified risks and issues to systems, processes and third party providers owners.
- Perform information security risk assessments such as but not limited to: security business impact analysis (BIA) and business dependency analysis; security controls plans; controls maturity assessments; third party provider risk profiling, risk assessments and audits.
- Maintains the information security risks and issues registers, deliver high quality reports and run information security committees meetings with business and IT management to manage risks.
- Support the design and improvement of the third party informatin risk management policies, controls and procedures. Assist or lead assessment of information security risks arising from engagement with third party providers and drive remediation efforts.
- Drive the design and implementation of a GRC platform including functional requirements, reviewing process designs, rolling out the new processes to the business and IT teams. Also, support in the administration and maintenance of the GRC tool.
- Design, improve and periodically report security key risk indicators and metrics to IT and business management to support continuous improvements and increase security maturity in our business processes.
- Designs, and delivers the security education training awareness program (SETA) across all business functions at the company. Manage external resources supporting the security awareness activities.
**What we are looking for in terms of experience**
- Desirable: Experience in implementing controls and managing compliance risks in regards to GXP regulated systems, data protection regulations such as EU and UK GDPR, CCPA, and cyber security regulations such as the EU NIS2, and the USA SEC Disclosure Requirements.
The Education, Certifications and Skill You Should Have:
- Significant of professional experience in information technology, ideally at least 3 years as an information security risk manager, preferably in a pharmaceutical, biotechnology or in other manufacturing organizations.
- Bachelor’s or Master’s degree in information security, or in Information Technology.
- Relevant information security professional certifications e.g. CISSP, CISM, CRISC, CISA, GSEC-GIAC, ISO 27001 auditor / practitioner.
- Desirable: Training and or certifications in GRC platforms such as ServiceNow GRC, Archer, Metricstream; and the NIST
-
Cyber Security Consultant
hace 1 semana
Barcelona, España amaris A tiempo completoJob description Take your career to the next level with Amaris Consulting as a Cyber Security Consultant (Risk & Compliance) in Barcelona (hybrid work).Become part of an international team, thrive in a global group with €800M turnover and 1,000+ clients worldwide, and an agile environment by planning the kickoff and follow up on projects. Join Amaris...
-
Cyber Security Consultant
hace 1 semana
Barcelona, España Amaris Consulting A tiempo completo**Who are we? **:**Amaris Consulting** is an independent technology consulting firm providing guidance and solutions to businesses. With more than 1,000 clients across the globe, we have been rolling out solutions in major projects for over a decade - this is made possible by an international team of 7,600 people spread across 5 continents and more than 60...
-
Cyber Security Risk Consultant
hace 4 horas
Barcelona, Barcelona, España Talent A tiempo completoCompany OverviewZurich is a global insurance company that places trust in its products and services every day. Our 53,000 employees worldwide form the basis of our success, enabling businesses and communities to face a world of risk with confidence.Job DescriptionWe are seeking an experienced Cyber Security Risk Consultant to join our Group Cyber and...
-
Cyber Security Expert
hace 2 horas
Barcelona, Barcelona, España Talent A tiempo completoAbout the RoleAs a Cyber Security Expert, you will play a crucial part in ensuring the security and integrity of Allianz's information systems. You will be responsible for developing and maintaining a strong Information Security Risk Management culture within the organization.Main ResponsibilitiesDevelop an Information Security Risk Management framework that...
-
Director of Cyber Security Governance, Risk, and
hace 2 semanas
Barcelona, España AstraZeneca A tiempo completoAre you ready to be part of the future of healthcare? Can you think big, be bold, and harness the power of digital and AI to tackle longstanding life sciences challenges? Then Evinova, a new health tech business part of the AstraZeneca Group might be for you! Transform billions of patients’ lives through technology, data, and innovative ways of working....
-
Cyber Risks Manager
hace 3 horas
Barcelona, Barcelona, España Talent A tiempo completoCyber Security Expert RequirementsTo succeed as a Cyber Security Expert at Allianz Technology, you will need to possess a combination of technical expertise and business acumen. You will be responsible for developing and maintaining a strong Information Security Risk Management culture within the organization.Main ResponsibilitiesDevelop an Information...
-
Cyber Security Threat Manager
hace 4 horas
Barcelona, Barcelona, España Talent A tiempo completoWe are seeking a highly skilled Cyber Security Threat Manager to join our team. The successful candidate will be responsible for driving the Vulnerability Management process execution in the Business Units, whether externally reported or internally discovered. This includes coordinating and following up with the Division Cyber Security Officer and CERT...
-
Enterprise Cyber Security Manager
hace 2 horas
Barcelona, Barcelona, España Talent A tiempo completoJob DescriptionWe are seeking a seasoned Information Security Professional to lead Omya's Data Security Program. As an Enterprise Cyber Security Manager, you will be responsible for implementing and executing our company-wide data protection strategy.Main Responsibilities:Design, implement, and operate data security solutions at an enterprise level using...
-
Cyber Security Architect
hace 3 horas
Barcelona, Barcelona, España Talent A tiempo completoAbout the RoleWe are seeking a highly skilled Cyber and Digital Security Specialist to join our team. The successful candidate will be responsible for establishing and maintaining security products, platforms, and solutions designed to mitigate digital IT risks.Key Responsibilities:Evaluate and implement security controls to ensure compliance with regulatory...
-
Cyber Security Architect
hace 7 días
Barcelona, España Wilhelmsen group A tiempo completoJoin our global team for a career filled with opportunities to solve challenges both small and large, local and global, simple and complex.Global Business Services AS (GBS) is looking for a Security Architect.The Security Architect will play an important role in shaping and executing GBS's overall security strategy, incorporating Governance, Risk Management,...
-
Cyber Security Architect
hace 4 días
Barcelona, España Wilhelmsen group A tiempo completoJoin our global team for a career filled with opportunities to solve challenges both small and large, local and global, simple and complex.Global Business Services AS (GBS) is looking for aSecurity Architect .The Security Architect will play an important role in shaping and executing GBS's overall security strategy, incorporating Governance, Risk Management,...
-
Vulnerability Management Specialist
hace 2 horas
Barcelona, Barcelona, España Talent A tiempo completoCyber Security Expert Job DescriptionWe are seeking a highly skilled Cyber Security Expert to join our team at Allianz Technology. As a Cyber Security Expert, you will be responsible for ensuring the security and integrity of our information systems.Main ResponsibilitiesDevelop an Information Security Risk Management framework that provides business...
-
Cyber Security Lead
hace 4 semanas
Barcelona, España Arxada A tiempo completoArxada is a global specialty chemicals business that’s committed to solving the world’s toughest preservation challenges through better science. With a proud history of innovation dating back more than a century, we aim to help our customers develop more sustainable solutions that protect and maintain the health and wellbeing of people and extend the...
-
Cyber Security Analyst
hace 4 semanas
Barcelona, España isolutions A tiempo completoIs Cyber Security your passion? More and more companies are using Microsoft cloud technologies to increase agility and enable innovation. Deploying Microsoft 365, and Azure services is often the first step into the cloud. Modern ways of working and cloud services present new challenges for IT security. In our Cloud Security Practice, we help organizations...
-
Cyber Security Analyst
hace 12 horas
Barcelona, España Talent A tiempo completoIs Cyber Security your passion?More and more companies are using Microsoft cloud technologies to increase agility and enable innovation. Deploying Microsoft 365 and Azure services is often the first step into the cloud. Modern ways of working and cloud services present new challenges for IT security.In our Cloud Security Practice, we help organizations...
-
Cyber Security Analyst
hace 11 horas
Barcelona, España Talent A tiempo completoIs Cyber Security your passion?More and more companies are using Microsoft cloud technologies to increase agility and enable innovation. Deploying Microsoft 365 and Azure services is often the first step into the cloud. Modern ways of working and cloud services present new challenges for IT security.In our Cloud Security Practice, we help organizations...
-
Cyber Security Analyst
hace 2 días
Barcelona, España Isolutions Ag A tiempo completoIs Cyber Security your passion?More and more companies are using Microsoft cloud technologies to increase agility and enable innovation.Deploying Microsoft 365 and Azure services is often the first step into the cloud.Modern ways of working and cloud services present new challenges for IT security.In our Cloud Security Practice, we help organizations improve...
-
Cyber Security Expert
hace 1 día
Barcelona, Barcelona, España Zurich Insurance A tiempo completoZurich Insurance is a leading global insurance provider seeking an experienced Cyber Security Expert to join our team. As a Cyber Security Expert, you will be responsible for reviewing and assessing the security of our suppliers and ensuring that they meet our strict information security standards.Your primary focus will be on third-party assurance, where...
-
Cyber Security Expert
hace 3 horas
Barcelona, Barcelona, España Talent A tiempo completoCyber Security Experts play a crucial role in protecting Allianz Group's information assets from cyber threats. As an expert in this field, you will be responsible for identifying and addressing potential vulnerabilities that could impact the successful delivery of our business objectives.The primary objective of this position is to ensure that Allianz is...
-
Cyber Security Analyst
hace 2 días
Barcelona, España Isolutions Ag A tiempo completoIs Cyber Security your passion?More and more companies are using Microsoft cloud technologies to increase agility and enable innovation.Deploying Microsoft 365 and Azure services is often the first step into the cloud.Modern ways of working and cloud services present new challenges for IT security.In our Cloud Security Practice, we help organizations improve...
