Cyber Governance Officer Setúbal

Cyber Governance Officer
Setúbal
Setúbal, Setubal, Portugal

Decskill, founded in 2014 as an IT Consulting Company, places paramount importance on its greatest asset: its people. Our main mission is to deliver value through knowledge and talent, and we achieve this by fostering a culture of excellence and investing in the development and
- being of our people. With over 600 dedicated professionals and offices in Lisbon, Porto, Madrid, and Luxembourg, Decskill operates across three core areas:

Decskill Talent: We believe that our people are key to our success. Through Decskill Talent, we empower our team to embrace the digital transformation challenges of our clients. We collaborate with clients to drive innovation, ensuring project success and business growth.

Decskill Boost: Equipping our team with the latest tools and methodologies, we optimize Time-to-Market and deliver innovative solutions exceeding client expectations.

Decskill Connect: Our team collaborates closely with clients to implement and manage IT infrastructures that generate
- term value.

At Decskill, we believe that by nurturing and empowering our people to confront the challenges of digital transformation, we create value not only for our clients but also for our entire ecosystem, fostering a digital community dedicated to growth and progress.

We are looking for a Cyber Governance Officer for a hybrid project based in Lisbon or Porto (2x/Week).

Responsibilities:

• Ensure the entity conformity with all relevant cybersecurity regulations and frameworks (ISO, NIST, DORA…).
• Ensure the entity conformity with all internal cyber policies and process.
• Define IT security policies within the scope.
• Monitor the formalization of cyber controls.
• Follow ongoing entity conformity actions.
• Perform a reporting of entity conformity level to the top management.
• Raise awareness among employees on security practices and conformity rules.

Requirements:

• Proven track in Cybersecurity (5 years minimum ).
• Knowledge in ISO27001 & NIST .
• Previous experience in strategy and governance is appreciated.
• ISO 27001 lead auditor or lead implementor certification
• ISO 27005 Risk management certification.
• Rules & norms (Knowledge of regulatory standards, ability to translate them into internal policies).
• Regulatory (general knowledge in IT and cybersecurity regulators framework).
• Control (Ability to verify operations, ensure that the procedures are being followed…).
• Cybersecurity (general knowledge in cybersecurity risks, frameworks and requirements).
• Risk opinion (ability to challenge, approve and decide (new activities, projects…).
• IT knowledge (global knowledge of IT, its major processes and assets & solutions).
• Business/IT Relationship (ability to understand business needs).

If you’re interested in this job please send your CV to with reference CN/CG.

Decskill is committed to equality and
- discrimination with all our talents. We recruit and promote talent, based on diversity and inclusion, regardless of age, gender, ethnicity, race, nationality or any other form of discrimination incompatible with the dignity of the human being.