ICT and Security Risk Officer

What You Can Expect

Our client is a Portuguese financial institution known for its expertise in private banking, investment banking, and wealth management services.

What you will be doing

• Ensure an independent view of information security capabilities, effectiveness, and maturity.
• Stay updated on information security solutions, standards, regulations, and legislation.
• Analyze, assess, and treat information security risks, proposing control methods.
• Monitor and address vulnerabilities to mitigate security gaps.
• Evaluate Threat Intelligence, assess threats, and monitor risk reduction interventions.
• Ensure legal and regulatory compliance in Information Security and Business Continuity, proposing improvements.
• Oversee operational resilience tests and resolve identified failures.
• Define requirements for secure Information Systems implementation and ICT risk management.
• Recognize suspicious user behaviors and coordinate responses to security incidents, collect evidence, and prevent recurrence.
• Maintain key Information Security documents and provide training and awareness.
• Classify ICT and information asset criticality, recommending improvements.
• Conduct Business Impact Analysis (BIA) and improve Business Continuity Plans.
• Advise on Information Security, informing management of risks and control implementations.
• Support internal and external audits, ensuring corrective actions and effective measures.

What you will bring:

• Bachelor's/Master's degree in Computer Engineering, Networks, or Information Security.
• Up to 3 years of experience in Information Security or Network and Information Systems Consulting.
• Knowledge in ICT risk management and Security.
• Understanding of information security principles and familiarity with ISO 27001, NIST, GDPR, FAIR.
• Ability to work independently and in a team.
• Strong analytical skills and attention to detail.
• Advanced English proficiency and basic Spanish proficiency.