Junior GRC Specialist (Cybersecurity) - Hybrid, Madrid

We are looking for a Governance, Risk & Compliance Specialist to contribute for a project with one of our global customers pioneer in the security field., * Handle the assigned tasks from the allocated domain with minimal guidance from the leads. (Domain Examples: BCMS, ISMS, Risk assessment (AARR & BIAs), GAP Analysis, Incident management, Awareness activities, Data Privacy, etc.)

• Independently handle (with very minimal guidance from the supervisors) internal audits or GAP Analysis to ensure compliance with security standards (ex. ISO 27001/ISO 22301/ISO 27701, NIST CSF 2.0, ..) requirement as well as process specific requirements
• Directly Interact with customer and communicate detailed technical requirement to the team.
• Policy/Procedure creation activities and process improvement ideas to be implemented.

• 2+ years' experience in audits and compliance and assessments based on national and international standards (ISO27001, ISO22301, ENS, NIST, DORA, NIS2)

• Knowledge/certifications in ISO27001 is a must. It is also desirable knowledge in ENS, ISO 27005, ISO22301, ISO 42001, NIST CSF 2.0, NIST, SOC 2, GDPR, DORA, NIS2, CMMC 2.0

• Proficiency with a variety of instruments for assessing and controlling risk (ex. ISO 31000, Magerit v3, COSO)

• Experience in implementation of best practices, compliance with information security policies and standards.

• Technical experience or applicable knowledge in security architectures for different environments.

• Experience related to Cybersecurity ecosystem, deployment experience of security technologies.

• Knowledge of different security solutions/technologies: FW, DLP, IDS/IPS, EDR…

• Experience in incident response plans and exercises

It is also desirable and will be considered to hold certifications such as CISM, CISSP, CISA, ISO/IEC 27001 Lead Auditor / Lead Implementer.

We will also consider knowledge of HIPAA, ARC-AMPE or OT Cybersecurity (ISO 27019 / IEC 62443) for the more senior role

? `Retribución Flexible´ Program: (Meals, Kinder Garden, Transport, online English lessons, Health Care Plan…)

? Free access to several training platforms

? Professional stability and career plans

? UST also, compensates referrals from which you could benefit when you refer professionals.

? The option to pick between 12 or 14 payments along the year.

? Real Work Life Balance measures (flexibility, WFH or remote work policy, compacted hours during summertime…)

? UST Club Platform discounts and gym Access discounts

More in details, UST is a multinational company based in North America, certified as a Top Employer company with over 35.000 employees all over the world and presence in more than 30 countries. We are leaders on digital technology services, and we provide large-scale technologic solutions to big companies.