Cybersecurity GRC Consultant

Would you like to make an impact in different industries with your work? Then this project is for you. Here you will have the opportunity to be part of a multicultural and inclusive team with global projection that contacts with areas such as consultancy, law, strategy, insurance, finance, among others.

We are looking for a Cybersecurity GRC Consultant to work in this project in Lisbon.

Your key responsibilities:

Engage with clients to assess and improve their IT GRC frameworks, policies, and procedures;
Lead risk assessments, compliance audits, and gap analyses for clients across various industries;
Design and implement IT GRC solutions that align with client business objectives and regulatory requirements;
Provide expert advice on IT governance, risk management, and compliance strategies;
Develop and deliver training and workshops on IT GRC topics for clients;
Prepare reports and findings to client stakeholders;
Manage operationally multiple client engagements simultaneously, ensuring high-quality deliverables and adherence to timelines;
Stay abreast of industry trends, regulatory changes, and advancements in technology that may impact clients' GRC strategies.

To qualify for the role you must have:

Bachelor's or master’s degree in information technology, Cybersecurity, Risk Management, or a related field;
1 to 3 years of experience in IT GRC, with a focus on consulting or advisory services;
Practical knowledge of ISO/IEC 27001 (controls, implementation, or audit support);
Familiarity with the NIST Cybersecurity Framework (CSF);
Proven track record of delivering high-quality consulting services to clients;
Strong understanding of IT governance frameworks (e.g., COBIT, ITIL) and risk management methodologies;
Exceptional analytical, problem-solving, and project management skills;
Excellent communication, presentation, and interpersonal skills, with the ability to engage effectively with clients at all levels.

Ideally, you will also have: