Cyber Security GRC Specialist (Data Security)

We are looking for a highly experienced Cyber Security GRC Specialist with a strong focus on Data Security to join our team in Eindhoven. The ideal candidate will be responsible for strengthening governance frameworks, managing risk, and ensuring compliance across the organization's data security landscape., * Lead and manage Governance, Risk, and Compliance (GRC) initiatives

• Develop, implement, and maintain data security policies, standards, and procedures
• Conduct risk assessments and ensure mitigation strategies are in place
• Ensure compliance with relevant regulatory and security frameworks
• Monitor and report on security risks, controls, and compliance status
• Collaborate with IT and business stakeholders to align security practices with business objectives
• Support audit processes, including internal and external audits
• Identify and address data protection and privacy risks
• Provide guidance on security best practices and regulatory requirements

• 8-10 years of experience in Cyber Security with a focus on GRC
• Strong expertise in:

• Governance, Risk, and Compliance frameworks
• Data security and data protection principles
• Risk assessment and risk management methodologies

• Experience with security standards and compliance frameworks (e.g., ISO 27001, NIST, GDPR)
• Proven ability to manage security audits and compliance programs
• Strong stakeholder management and communication skills, * Experience working in enterprise environments
• Knowledge of data privacy regulations and frameworks
• Relevant certifications such as CISSP, CISM, CRISC, or ISO 27001 Lead Implementer/Auditor
• Ability to work independently in a fast-paced environment