Cybersecurity Analist (Global, Risk & Compliance)

Cyber GRC Specialist

📍 Location: Spain | 💼 Work Mode: Remote

🧠 English Level: B2/C1 – CV in English

 

🚀 What will you do day-to-day?

 

You will be part of the Cyber GRC (Global, Risk & Compliance) team, supporting different areas to ensure cybersecurity governance and compliance. Your main responsibilities will include:

 

Holistic Governance:

• Analyze and understand cybersecurity controls defined in the maturity model, as well as in Group policies and standards.
• Assess, together with technical teams, the actual implementation of controls, verifying alignment with established requirements.
• Document existing controls following the defined format (objective, frequency, RACI, operation, monitoring, evidence...).
• Identify gaps and propose improvements to strengthen effectiveness and maturity of controls.

Security Compliance:

• Monitor compliance indicators (Qualys) across different technologies: LS, BD, network, security, etc.
• Coordinate and manage remediation processes with technical teams.
• Evaluate and manage requests for exceptions.
• Participate in the final approval of exceptions together with Regulatory Framework & Compliance.
• Ensure internal compliance scanning infrastructure (scanners, agents, and all necessary components) is deployed, maintaining proper visibility of the network (hosts and services) to guarantee service delivery.

 

🎯 What we are looking for

Education:

• Degree in Computer Engineering, Computer Science, or similar.

Experience:

• Minimum 2 years of experience in relevant fields.

Skills & Knowledge:

• High level of English (at least B2).
• Basic understanding of security frameworks and compliance regulations.
• Knowledge of Cybersecurity Risk Governance (holistic approach, cyber metrics, golden source HERACLES, etc.), ensuring alignment with company strategy and metrics.
• Ability to follow and control management of cyber audits and recommendations.
• Strong communication skills to maintain open collaboration with local focal points and global cybersecurity teams.
• Technical knowledge in basic systems and networks.
• Experience with compliance or vulnerability management tools (Qualys, Nessus or similar).
• Proficiency in Office Suite (Excel, Word) and basic knowledge of reporting tools such as Power BI.
• Other tools positively valued: CyberArk.
• Strong analytical and problem-solving skills.
• Eagerness to learn.

 

🌟 Why join us?

✅ Permanent contract

✅ 23 vacation days

✅ Flexible compensation (meal vouchers, health insurance, childcare…)

✅ Exclusive discounts at Fnac, theater, cinema, Booking, and more

✅ Access to 1,000+ gyms with Gympass

✅ “Bring a Friend” referral program with bonus

✅ All necessary equipment provided

✅ Continuous training and official certifications

 

📩 Interested? Send us your CV in English and join our team!