Cybersecurity Analist (Global, Risk & Compliance) España

Descripción de la oferta

Proceso de selección continuo.

Funciones

We are looking for a Cyber GRC Specialist to join our team remotely from Spain. The role is part of the Cyber GRC (Global, Risk & Compliance) team, focusing on ensuring cybersecurity governance and compliance. Location: Spain. Work Mode: Remote. English level B2/C1 is required and CV must be submitted in English.

Job Functions
· Analyze and understand cybersecurity controls defined in the maturity model, as well as in Group policies and standards.
· Assess, together with technical teams, the actual implementation of controls, verifying alignment with established requirements.
· Document existing controls following the defined format (objective, frequency, RACI, operation, monitoring, evidence).
· Identify gaps and propose improvements to strengthen effectiveness and maturity of controls.
· Monitor compliance indicators (Qualys) across different technologies: LS, BD, network, security, etc.
· Coordinate and manage remediation processes with technical teams.
· Evaluate and manage requests for exceptions, participating in final approval with Regulatory Framework & Compliance.
· Ensure internal compliance scanning infrastructure (scanners, agents, and all necessary components) is deployed, maintaining proper visibility of the network (hosts and services) to guarantee service delivery.

Requisitos

· Degree in Computer Engineering, Computer Science, or similar.
· Minimum 2 years of experience in relevant fields.
· High level of English (at least B2).
· Basic understanding of security frameworks and compliance regulations.
· Knowledge of Cybersecurity Risk Governance (holistic approach, cyber metrics, golden source HERACLES, etc.), ensuring alignment with company strategy and metrics.
· Ability to follow and control management of cyber audits and recommendations.
· Strong communication skills to maintain open collaboration with local focal points and global cybersecurity teams.
· Technical knowledge in basic systems and networks.
· Experience with compliance or vulnerability management tools (Qualys, Nessus or similar).
· Proficiency in Office Suite (Excel, Word) and basic knowledge of reporting tools such as Power BI.
· Other tools positively valued: CyberArk.
· Strong analytical and problem-solving skills.
· Eagerness to learn.

Se ofrece

· Permanent contract.
· 23 vacation days.
· Flexible compensation (meal vouchers, health insurance, childcare…).
· Exclusive discounts at Fnac, theater, cinema, Booking, and more.
· Access to 1,000+ gyms with Gympass.
· “Bring a Friend” referral program with bonus.
· All necessary equipment provided.
· Continuous training and official certifications.