Our Company
Technogym inspires 55 million daily users to train using our innovative & engaging solutions for fitness, sport and health. By promoting the wellness lifestyle of exercise, a balanced diet, and a positive mental approach, Technogym has rapidly grown into a success story of over 2,500 employees at 15 branches, expanding to more than 100 countries and has been selected as Official Supplier to 9 editions of the Olympic Games - from Sydney 2000 to Paris 2024.If you are a team player with strong relationship skills and an international approach, eager to invest your energy in building dreams, you have the right spirit to join Technogym! You will naturally fit with our culture if you work out and live a healthy lifestyle, are pro-active, determined and digital savvy. Move with us for a better world!
Your Role
We are looking for a highly skilled and strategic Cyber Security Analyst (GRC) to join our team. In this role, you will be responsible for the implementation, evolution, and continuous improvement of our Governance, Risk, and Compliance (GRC) framework. You will ensure our digital ecosystem is managed in line with regulatory requirements, industry standards, and business objectives, making it durable, resilient, and secure.
Your Impact
- GRC Framework Engineering: Contribute to the design, implementation, and management of the company’s enterprise GRC program, including the continuous improvement of policies, standards, and procedures to ensure a strong governance foundation.
- Risk & Compliance Advancement: Support the continuous improvement of our risk management capabilities by conducting risk assessments, tracking findings, and developing GRC playbooks to ensure efficient and repeatable compliance activities.
- Regulatory Intelligence Integration: Assist in the operationalization of regulatory intelligence, tracking new laws (e.g., NIS2) in the cyber security scope and standards to proactively identify and address emerging compliance risks.
- Organizational Resilience: Ensure that GRC activities and controls not only meet compliance requirements (like ISO 27001, GDPR) but also deliver measurable resilience and a clear security return on investment.
- Security Policy & Awareness: Participate in the lifecycle management of security policies and support the delivery of security awareness campaigns, helping to embed a security-first culture throughout the organization.
- Project & Program Involvement: Contribute to security and compliance projects, such as certifications and audits, aligning GRC activities with strategic business objectives and evolving cybersecurity trends.
- Collaboration: Work within a multidisciplinary security team, engaging with peers across technology, risk, legal, and business domains.
- Continuous Improvement: Stay informed on industry developments and regulatory changes, actively proposing enhancements to GRC process efficiency, compliance effectiveness, and the overall security posture.
About You
You are passionate about cybersecurity and committed to advancing your expertise in governance, risk management, and compliance. You bring a proactive mindset and a strong sense of ownership over security and compliance outcomes.
- Education: Bachelor’s degree in Computer Science, Cybersecurity, Information Systems, or a related technical discipline (or equivalent practical experience).
- Experience: 1–6 years of professional experience in information security, IT audit, risk management, or a dedicated GRC domain.
- Framework Knowledge: Working knowledge of key security and governance frameworks such as NIST CSF, ISO 27001, and regulations like GDPR and NIS2.
- Analytical & Communication Skills: Ability to analyze complex compliance requirements, articulate risk findings clearly, and collaborate effectively in global and cross-functional environments.