It Risk & Cyber Security Lead

It Risk & Cyber Security Lead
Lisboa
Lisboa, Lisboa, Portugal

IT RISK EXPERT (HYBRID LISBON)

Portuguese company hires for hybrid position

Location

: Lisbon, Portugal

Only candidates already based in Portugal will be considered

Work Model: On-site / Hybrid (Lisbon-based role)

Language Requirements: Fluent English

Seniority: Senior (6+ years of experience)

Client Sector: Financial, Banking

Instructions: Please send your CV in English and make sure to include all skills and experience that match the requirements of the opportunity. This will significantly increase your chances of success

Role Context

To strengthen the IT Risk EMEA team, we are looking for an IT Risk Expert based in Lisbon. This professional will join an international IT Risk organization, working closely with regional and corporate stakeholders to ensure robust IT and Cyber Risk management, governance, and reporting across multiple countries.

You will act as a key reference point for IT Risk, supporting governance frameworks, regulatory interactions, remediation initiatives, and
- level reporting in a highly regulated environment.

Key Responsibilities

• Act as the IT Risk referent for the assigned scope, liaising with Regional and Corporate IT Risk Officers;
  
  
  
  
• Deploy and supervise IT Risk management practices, ensuring alignment with Group governance standards;
  
  
  
  
• Lead andcoordinate IT & Cyber Risk governance, aligned with regional strategy and priorities;
  
  
  
  
• Prepare, organize, and facilitate IT Risk and Cyber Risk committees;
  
  
  
  
• Provide expert support to the CISO, including participation in architecture and security committees;
  
  
  
  
• Identify, analyze, classify, and consolidate IT risks within the assigned entities;
  
  
  
  
• Maintainand update the IT Risk register and risk mapping;
  
  
  
  
• Ensure at least annual IT Risk reviews for all entities in scope;
  
  
  
  
• Approve treatment plans for
  - major IT risks and monitor remediation actions;
  
  
  
  
• Follow up on control plans, ensuring proper execution and evidence collection;
  
  
  
  
• Support responses to regulatory and supervisory requests related to IT and Cyber Risk;
  
  
  
  
• Monitor progress of IT risk remediation projects and corrective actions;
  
  
  
  
• Contribute tothe annual budget process from an IT Risk perspective;
  
  
  
  
• Deliver regular reporting, alerts, and key risk indicators to senior stakeholders.
• Mandatory Requirements

(All mandatory requirements must be clearly stated in the CV to be considered)**

• 5+ years of proven experience in IT Risk and Cyber Security;
  
  
  
  
• Hands-onexperience with Service
  Now GRC – IT Risk module;
  
  
  
  
• Strong expertise in IT Risk Governance, risk assessment, and remediation tracking;
  
  
  
  
• Advancedskills in Microsoft Excel and Power
  Point (reporting, dashboards, executive presentations);
  
  
  
  
• Excellent written and verbal communication skills in multicultural environments;
  
  
  
  
• Strong organizational skills with high attention to detail;
  
  
  
  
• Ability to facilitate meetings, manage discussions, and lead negotiations;
  
  
  
  
• Critical, structured, and analytical thinking;
  
  
  
  
• Strong planning, prioritization, and deadline management skills.

Languages

• English: Fluent / Mandatory
• French: Nice to have

Soft Skills

• Strong stakeholder management and influencing skills;
  
  
  
  
• Ability to adapt and improve processes continuously;
  
  
  
  
• High sense ofresponsibility, rigor, and quality focus;
  
  
  
  
• Excellent listening and questioning capabilities;
  
  
  
  
• Ability to work autonomously in complex, regulated environments.

Additional Information

• Availability to travel within Portugal;
  
  
  
  
• Availability to travel internationally when required.

List of keywords that must appear in your CV

List of keywords that must appear in your CV: IT Risk, Cyber Risk, IT Risk Governance, Service
Now GRC, IT Risk Management, Risk Assessment, Risk Mapping, IT Risk Register, Cyber Security, Control Plans, Risk Remediation, Regulatory Compliance, CISO Collaboration, IT Governance, Microsoft Excel, Power
Point, English Fluent, French, Lisbon.