- Provide support to stakeholders filling the risk cards;
- Review and challenge content of the risk cards to ensure they meet expected quality;
- Design and continuous improvement of the action plan follow-up;
- Ensure actions plans are formalized with all needed information;
- Follow-up and reporting (figures, alerts,…) of risks register entries and action plans in order to provide an accurate and up-to-date risk view and Assist in reporting and preparation of regular Function/Metier/Region IT risk and control committees.
- > 5 years of proven experience in IT
- Knowledge of core Information Security concepts related to Continuity, Cybersecurity, Governance, Risk & Compliance (equivalent to ISO 27000-series standards or other similar standards/frameworks);
- Experience working with IT controls frameworks including risk assessment;
- High proficiency in English is mandatory (both written and spoken);
- Proficiency in French is valued.
The Devoteam Group works for equal opportunities, promoting its employees based on merit and actively fights against all forms of discrimination. We are convinced that diversity contributes to the creativity, dynamism and excellence of our organization. All of our vacancies are open to people with disabilities.
What we offer:
- Professional development and monitoring talent;
- Commitment to our employees' development;
- Collaboration in a company that is constantly growing and evolving;
- Strong organisational culture: collaboration, sharing, flexibility, integrity and low ego.
Would you like to join our team? Then send your CV.
Devoteam Cyber Trust is the Cybersecurity specialist arm of the Devoteam Group. With our 800+ experts located across EMEA, we aim to establish cybersecurity as an enabler of business success rather than a gatekeeper. We leverage an end-to-end approach to Cyber Resilience, Applied Security, and Managed Security services to secure the tech journey of large and medium-sized companies from all sectors and industries.
Since 2009, previously known as INTEGRITY, our team based in Portugal is specialised in providing cutting-edge Managed Security Services that combine its expertise and proprietary technology to consistently and effectively reduce the cyber risk of our clients.
The comprehensive service range includes Persistent Intrusion Testing, ISO 27001, PCI-DSS, GRC Consulting and Solutions, and Third-Party Risk Management. ISO 27001 (Information Security) and ISO 9001 (Quality) certified, PCI-QSA, and member of CREST and CIS - Centre for Internet Security, we provide services to a considerable number of clients, operating in more than 20 countries.