ICT and Security Risk Officer Lisboa

ICT and Security Risk Officer
Lisboa
Lisboa, Lisboa, Portugal

Our client is an international bank specialising in private banking and corporate investment. They’re looking for an ICT and Security Risk Officer to join their team in Lisbon. In this role, you’ll focus on managing ICT and information security risks, overseeing
- party ICT service providers, conducting operational resilience tests, supporting the Business Continuity Plan, and developing awareness and training programs on information security.

Key Responsibilities

1. Independent Security Assessment: Evaluate the maturity and effectiveness of information security practices and report findings to the supervisor.
2. Stay Informed: Keep updated on new and emerging information security solutions, standards, regulations, and legislation.
3. Risk Management: Analyse and mitigate information security risks, proposing control measures to address identified vulnerabilities.
4. Vulnerability Management: Monitor the vulnerability management program to identify and close security gaps.
5. Threat Intelligence Analysis: Assess threats, propose (internal or external) interventions to reduce risks, and monitor their execution.
6. Regulatory Compliance: Review compliance with legal and regulatory standards, identifying areas for improvement and recommending necessary actions.
7. Operational Resilience: Monitor operational resilience tests, address any failures, and enhance IT risk management processes.
8. Behavioural Monitoring: Analyse user activities to detect and address suspicious behaviours.
9. Document Maintenance: Develop and maintain critical information security documents.
10. IT Asset Classification: Assess and classify IT assets’ criticality, ensuring dependencies are accurately identified and recommending improvements.
11. Incident Response: Review security incidents, coordinate responses, gather evidence for legal actions, and implement measures to prevent recurrence.
12. Business Continuity Planning: Perform business impact analysis (BIAs), develop response plans, and propose improvements to the Business Continuity Plan (BCP).
13. Training and Awareness: Conduct training sessions and awareness campaigns on information security across the organisation.
14. Expert Advice: Advise management on major risks and oversee the implementation of security controls.
15. Audit Support: Assist in internal and external audits, ensuring effective corrective actions are implemented.

What You Bring

1. Education: Degree or Master’s in Computer Engineering, Networks, or Information Security.
2. Risk Management Knowledge: Solid understanding of ICT and Security risk management practices.
3. Information Security Expertise: Strong grasp of information security principles.
4. Familiarity with Standards: Up-to-date knowledge of international standards and regulations such as ISO 27k, NIST, GDPR, and FAIR.
5. Independent and Collaborative Work: Ability to work independently while being an effective team player.
6. Analytical Skills: Strong
   - solving and analytical capabilities.
7. Language Proficiency: Native Portuguese; advanced proficiency in English (written and spoken); basic knowledge of Spanish is a plus.

Why Apply Now?

Our client is a
- established international bank. You’ll have the opportunity to work in an international banking environment, receive continuous training, and grow your career in a challenging professional environment.

Are you ready to take the next step in your career? Send your CV to ari. kilab@robertwalters.com

Location: Lisboa

Contract Type: FULL_TIME

Specialization: Tecnologias de informação

Area: Security

Industry: Atividade Bancária

Salary: Negotiable

Type of Work: Presencial

Experience Level: Associado

Job Reference: 2329482/001

Posted Date: 15 de Janeiro de 2025

Consultant: Ari Kilab