Cybersecurity Risk & Compliance Specialist (f/m/div.)
Cybersecurity Risk & Compliance Specialist (f/m/div. )
Bosch Group
In Ovar, our main mission is to guarantee everyone's safety by being ready to act in the event of danger. Our company, with about 1200 associates, develops, creates and produces inspiring solutions for a safe and enjoyable life.
Job Description
The CISO office is growing, and we are hiring a Cybersecurity Risk and Compliance Specialist. This role involves assessing, managing, and mitigating risks while fostering a culture of compliance and proactive security practices. The specialist will collaborate with
- functional teams to identify vulnerabilities, design control measures, and monitor the effectiveness of security programs.
Your contribution to something big:
Risk Assessment and Management
- Conduct cybersecurity risk assessments to identify potential threats, vulnerabilities, and impacts.
- Develop and implement risk mitigation strategies and recommend security controls.
- Maintain the organization’s risk register and ensure risks are regularly reviewed and updated.
Compliance and Regulatory Requirements
- Ensure adherence to industry standards (e. g. , ISO 27001, NIST, GDPR).
- Monitor regulatory changes and assess their impact on the organization’s cybersecurity posture.
- Prepare and facilitate audits, both internal and external, and address any findings or gaps.
Policy and Framework Development
- Develop and maintain cybersecurity policies, procedures, and guidelines.
- Ensure alignment of policies with legal, regulatory, and business requirements.
- Promote awareness of compliance obligations and best practices within the organization.
Monitoring and Reporting
- Monitor and report on compliance with internal controls, frameworks, and regulatory standards.
- Develop dashboards and metrics to track key risk and compliance indicators (KRIs/KCIs).
Vendor and Third-Party Risk Management
- Assess and manage cybersecurity risks associated with
- party vendors and partners. - Review and validate vendor security assessments, certifications, and contractual obligations.
Incident Management and Response
- Support incident response efforts by ensuring compliance with policies and regulatory requirements.
- Document lessons learned and recommended updates to processes and controls.
Qualifications
What distinguishes you:
- 5/10+ years of experience in Cybersecurity, Information Technology, Risk Management, or related field.
- In-depth knowledge of cybersecurity principles, risk management practices, and compliance frameworks.
- Strong analytical and
- solving skills to assess risks and develop mitigation strategies. - Familiarity with tools for compliance management, risk assessment, and security monitoring.
- Excellent communication skills, with the ability to collaborate effectively across technical, business, and executive teams.
- Industry certifications such as CISSP, CISM, CRISC, CISA, or similar are highly desirable.
Additional Information
Hybrid model: 2 days at the office
Work #Like
ABosch includes:
Flexible work conditions | Hybrid work system | Health insurance and medical office on site | Training opportunities & certifications | Access to great discounts in partnerships and Bosch products | Sports and health related activities | Free parking lot | Canteen
Make it happen! We are looking forward to your application!
#J-18808-LjbffrSeja o primeiro a candidar-se à vaga de emprego oferecida!
-
Porque procurar um emprego no Vagas.pt?
Newsletter de Emprego![]()
Todos os dias oferecemos novas vagas de emprego. ![]()
Pode escolher entre uma vasta gama de empregos: O nosso objectivo é oferecer a escolha mais vasta possível ![]()
Receba novas ofertas por e-mail ![]()
Ser o primeiro a responder a novas ofertas de emprego ![]()
Todas as ofertas de emprego num só lugar (de empregadores, agências e outros portais de emprego) ![]()
Todos os serviços para quem procura emprego são gratuitos ![]()
Vamos ajudá-lo a encontrar um novo emprego
