Governance & Risk Management Expert (Barcelona, English, Hybrid, GRC systems)
hace 2 semanas
D-ploy is an IT and Engineering Solutions company with operations throughout the EMEA region including Switzerland, Germany, Czech Republic, Austria, UK, as well as the USA.
We pride ourselves on delivering innovative and superior services and solutions to numerous industry-leading clients. By building relationships and trusted partnerships within the IT community, we optimize our customer‘s IT productivity and contribute to the organization’s success and value.
We are interested in talking to engaging, flexible, and solution-oriented individuals who are looking to become a part of a dynamically growing and international organization. We are focused on creating value where IT counts, join us
Tasks and Responsibilities
Support the design and improvement of the information security framework (ISF): policies, controls, procedures using the NIST Cyber Security Framework; including third party risk management. Assess new and existing systems, data flows, business processes, and third party providers engagements and services to implement and verify compliance to the ISF reporting identified risks and issues to systems, processes and third party providers owners. Perform information security risk assessments such as but not limited to: security business impact analysis (BIA) and business dependency analysis; security controls plans; controls maturity assessments; third party provider risk profiling, risk assessments and audits. Maintains the information security risks and issues registers, deliver high quality reports and run information security committees meetings with business and IT mangement to manage risks. Support the design and improvement of the third party information risk management policies, controls and procedures. Assist or lead assessment of information security risks arising from engagement with third party providers and drive remediation efforts. Drive the design and implementation of a GRC platform including functional requirements, reviewing process designs, rolling out the new processes to the business and IT teams. Support in the administration and maintenance of the GRC tool. Design, improve and periodically report security key risk indicators and metrics to IT and business management to support continuous improvements and increase security maturity in our business processes. Designs, and delivers the security education training awareness program (SETA) across all business functions. Manage external resources supporting the security awareness activities. Desirable: Experience in implementing controls and managing compliance risks in regards to GXP regulated systems, data protection regulations such as EU and UK GDPR, CCPA, and cyber security regulations such as the EU NIS2, and the USA SEC Disclosure Requirements.Requirements
Minimun of 10 years of professional experience in information technology, at least 3 years as an information security risk manager, preferably in a pharmaceutical, biotechnology or in other manufacturing organizations. Bachelor’s or Master’s degree in information security, or in Information Technology. Relevant information security professional certifications CISSP, CISM, CRISC, CISA, GSEC-GIAC, ISO 27001 auditor / practitioner. Desirable: Training and or certifications in GRC platforms such as ServiceNow GRC, Archer, Metricstream; and the NIST Cyber Security Framework: Standards, Guidelines and Practises. You are resilient and take accountability for delivering your work. You are passionate about cybersecurity and is able to coach and help others who come from different backgrounds in information technology, compliance or information security domains. You have a high level of personal integrity, ability to professionally handle confidential matters and convince others using appropriate level of judgment and maturity. You have strong verbal and written communication skills in English, German is a plus. You are a strong communicator: presentation and training, relationship management, consultation, negotiation. You can work in a matrix and geographically dispersed organization. All candidates must provide a Criminal record (not older than 3 months).Benefits
Broad range of activities, tasks, and projects Flexible working conditions Vouchers (B-day voucher, wedding, and new born surprise) Fishing for Friends program – our referral program Refreshments in the D-ploy office Further development and professional advancement Friendly and international working environment Company-sponsored events Competitive salary and various benefitsIs IT in your DNA?
-
Security Risk Assessment Specialist
hace 2 semanas
Barcelona, España D-ploy A tiempo completoD-ploy is an IT and Engineering Solutions company with operations throughout the EMEA region including Switzerland, Germany, Czech Republic, Austria, UK, as well as the USA. We pride ourselves on delivering innovative and superior services and solutions to numerous industry-leading clients. By building relationships and trusted partnerships within the IT...
-
Research & Development Quality Risk Management
hace 7 días
Barcelona, España Novartis A tiempo completo394206BR **Research & Development Quality Risk Management Manager**: Spain **About the role** **R&D Quality Risk Management Manager, Location: Barcelona, hybrid onsite, #LI-Hybrid.** As Research & Development Quality (RDQ) representative, you will support Regulatory Risk and Compliance by providing expertise and guidance to ensure that risk management...
-
Cyber Security Risk Manager
hace 4 días
Barcelona, España Launch Global A tiempo completo**Cyber Security Risk Manager - Contract 6 Months (with potential to extend to 2 years) - Barcelona** **Why this role might be of interest** The role has come about because the company, a highly successful and rapidly expanding international pharmaceutical business, is putting in place a brand new internal team to manage cyber security threats. Because of...
-
Governance, Risk And Compliance Consultant
hace 2 semanas
Barcelona, España Rockwell Automation A tiempo completoRockwell Automation is a global technology leader focused on helping the world’s manufacturers be more productive, sustainable, and agile. With more than 28,000 employees who make the world better every day, we know we have something special. Behind our customers - amazing companies that help feed the world, provide life-saving medicine on a global scale,...
-
Governance, Risk And Compliance Consultant
hace 2 semanas
Barcelona, España Rockwell Automation A tiempo completoGovernance, Risk And Compliance Consultant page is loaded Governance, Risk And Compliance Consultant Apply locations Barcelona, Spain time type Full time posted on Posted Yesterday job requisition id R24-2957 Rockwell Automation is a global technology leader focused on helping the world's manufacturers be more productive, sustainable, and agile. With more...
-
40654MKP - Cybersecurity GRC Specialist
hace 2 semanas
Barcelona, España Barcelona Activa A tiempo completoDescripció de l'oferta This position for Cybersecurity GRC Specialist for the company TD SYNNEX is part of the Job Marketplace that Barcelona Activa will develop on May 21st at the . Access to the Job Marketplace will be reserved only to those who are pre-selected. Why Choose TD SYNNEX: As a Fortune 500 global corporation, operating in over...
-
IT Governance Consultant
hace 4 semanas
Barcelona, España Grupo NS A tiempo completo**Descripción**: Grupo NS incorporates an IT Governance Consultant - ITIL for a long-term project in Barcelona (following a hybrid model 60% remote - 40% face-to-face). Minimum experience of 3 years as an ITIL consultant is required, you must be available to travel to Strasbourg 1 week a month and have a high level of English (B2-C1). We are looking for a...
-
40654MKP - Cybersecurity GRC Specialist
hace 3 semanas
Barcelona, España Barcelona Activa A tiempo completoThis position for Cybersecurity GRC Specialist for the company TD SYNNEX is part of the Job Marketplace that Barcelona Activa will develop on May 21st at the Barcelona Cybersecurity Congress.Access to the Job Marketplace will be reserved only to those who are pre-selected. Why Choose TD SYNNEX:As a Fortune 500 global corporation, operating in over 100...
-
Governance, Risk And Compliance Consultant
hace 2 semanas
Barcelona, España Rockwell Automation A tiempo completoRockwell Automation is a global technology leader focused on helping the world's manufacturers be more productive, sustainable, and agile. With more than 28,000 employees who make the world better every day, we know we have something special. Behind our customers - amazing companies that help feed the world, provide life-saving medicine on a global scale,...
-
IT Governance Consultant
hace 4 semanas
Barcelona, España Grupo NS A tiempo completo**IT Governance Consultant - ITIL** Barcelona - Publicada el 9 de agosto de 2023 Descripción Grupo NS incorporates an IT Governance Consultant - ITIL for a long-term project in Barcelona (following a hybrid model 60% remote - 40% face-to-face). Minimum experience of 3 years as an ITIL consultant is required, you must be available to travel to Strasbourg...
-
Risk Management Support
hace 4 semanas
Barcelona, España ATG Europe A tiempo completoSupport F4E with the maintenance and continuous improvement of risk management procedures, policies and process; - Maintain and provide training to F4E staff on Risk & opportunity management; - Prepare and facilitate risk management workshops for identification of risk and opportunities; - Prepare and facilitate risk management workshops for assessment in...
-
Security Governance
hace 4 semanas
Barcelona, España Dentsu Aegis Network A tiempo completoThe purpose of this role is to contribute to the ongoing development of client focused security initiatives, standards and compliance strategy. Provide information security support and advisory services to our Brands, for managing clients’ security requirements, agreements and assessment programmes. The Security Governance & Risk Analyst will be...
-
Enterprise Data Risk Manager
hace 5 días
Barcelona, España AstraZeneca A tiempo completo**Enterprise Data Risk Manager**: Macclesfield OR Barcelona Competitive Salary and Benefits Close date: 12th September 2023 **ABOUT ASTRAZENECA** AstraZeneca is a global, innovation-driven BioPharmaceutical business that focuses on the discovery, development and commercialisation of prescription medicines for some of the world’s most serious disease....
-
Security Governance
hace 4 semanas
Barcelona, España dentsu A tiempo completoThe purpose of this role is to contribute to the ongoing development of client focused security initiatives, standards and compliance strategy. Provide information security support and advisory services to our Brands, for managing clients’ security requirements, agreements and assessment programmes. The Security Governance & Risk Analyst will be...
-
Graduate Expert Health
hace 7 días
Barcelona, España Graduate Expert A tiempo completo**Description**: Graduate Expert Program: Your chance to realise your talent and shape your future. Our Saica Graduate Expert Program is a two years program which has been designed to grow in making an impact of the world while developing professionally and personally. Our Graduate Expert program is as a stepping stone to bigger and better career...
-
Graduate Expert Production Engineer Pack
hace 4 semanas
Barcelona, España Graduate Expert A tiempo completo**Descripción**: Our opportunity to realize your talents and shape your future. Our Saica Expert Graduate Program is a two-year program that has been designed to grow and make an impact in the world while developing professionally and personally. Our Expert Graduate program is a stepping stone to bigger and better career opportunities within Saica. As a...
-
Head of Compliance, Csv and Risk Management
hace 4 semanas
Barcelona, España Arxada A tiempo completoHead of Compliance, CSV & Risk Management Arxada is a pioneering leader with a powerful legacy: Over 120 years of creating specialty chemicals and solutions that potentiate the performance of our customers and their products. Our solutions, our expertise and our support help them to perform better - to be more efficient, more effective and more sustainable....
-
Risk Management Analyst
hace 4 semanas
Barcelona, España TD SYNNEX A tiempo completoThe Cyber Risk Management Analyst is responsible for assessing risk and compliance for the informational and system assets of TD SYNNEX and its suppliers. Will be responsible for executing the implementation of the organization-wide ISMS risk management function of the information security program to ensure information security risks are identified, assessed...
-
Corporate Cybersecurity Analyst
hace 7 días
Barcelona, España Werfen A tiempo completo**Job Overview**: - Post Date - November 24, 2023 - Number - WEBWW-2023-000069 - Job Function - Other - Location - Barcelona - Country - Spain **About the Position**: - This position will offer the opportunity to learn and contribute to cybersecurity governance, risk management, and compliance initiatives. You will work with experienced professional to...
-
Cybersecurity Grc Specialist
hace 2 semanas
Barcelona, España Sdi Digital Group A tiempo completoWhy Choose TD SYNNEX : As a Fortune 500 global corporation , operating in over 100 countries, TD SYNNEX values its diverse workforce of 22,000 employees. As the biggest IT distributor in the world, our mission is to provide top-notch cybersecurity solutions, empowering businesses and individuals to navigate the digital world safely and efficiently. About the...
