Information Security Risk Management Analyst (GRC)

Dellent is a consulting company focused in System Information and Telecommunications. Our goal is to help our candidates and consultants to take a step forward in their careers through projects that meet their needs and expectations. 

In this project you’ll contact with the European stock market area. Despite its development center being located in Porto and all administrative support in Lisbon, you will be part of a multicultural team that is spread across several European cities.

We are looking for an Information Security Risk Management Analyst (GRC) to join a project for one of our clients, based in Porto (hybrid model).

Responsibilities

• Perform information security risk assessments aligned with standards such as ISO 27005.
  
• Conduct control assessments based on frameworks like CIS Controls and NIST CSF.
  
• Evaluate risks across on-prem and cloud environments, including AWS, Azure, and Red Hat-based systems.
  
• Collaborate with internal stakeholders to track and manage risk-related activities using Jira (ITSM).
  
• Support governance and compliance initiatives, ensuring proper documentation, reporting, and risk mitigation follow-up.

Requirements

• 2+ years of experience in Information Security Governance, Risk & Compliance (GRC).
  
• Hands-on experience performing risk assessments using standards such as ISO 27005.
  
• Familiarity with security frameworks (CIS Controls, NIST CSF, or similar).
  
• Understanding of cloud environments (AWS, Azure) and Linux-based systems (e.g., Red Hat).
  
• Good communication skills and ability to work collaboratively in an Infosec team environment.