Cybersecurity Engineer (Compliance And Privacy Specialist)en Sant Cugat del Vallès, Barcelona.
detalle oferta
¿tienes alguna duda?
Amplía la información sobre el proceso contactando con:
Ana Lopez Almazan
Contactarour client
Our client is a global leader in Testing, Inspection and Certification (TIC), delivering high quality services to help clients meet the growing challenges of quality, safety, environmental protection, and social responsibility.
We are hiring a Compliance And Privacy Specialist to join the global security team.
your functions
To support the Cybersecurity GRC Manager in implementing and maintaining the organization's cybersecurity strategy, with a focus on compliance, privacy, and risk management aligned with NIST CSF, ISO 27001, and privacy regulations.
Key Responsibilities:
1. Compliance and Privacy Management:
¿ Manage internal compliance frameworks for Privacy and NIST CSF
¿ Translate security policies into actionable plans for users, project teams, and businesses
¿ Support implementation and maintenance of ISO 27001 certification
¿ Ensure compliance with privacy regulations (GDPR, LGPD, CPRA, etc.)
2. Risk Assessment and Management:
¿ Perform risk analyses for internal projects and new business applications
¿ Conduct cloud risk analyses and provide security recommendations
¿ Support the Cybersecurity GRC Manager in maintaining the organization's risk register
3. Audit and Assessment:
¿ Participate in the internal audit program, focusing on privacy and NIST CSF compliance
¿ Improve audit methodologies and manage audit schedules
¿ Perform privacy audits and NIST CSF assessments
4. Security by Design:
¿ Implement and manage the "security by design" framework
¿ Advise project teams on security measures from project initiation to go-live
¿ Provide guidance on secure application development
5. Stakeholder Management:
¿ Act as a point of contact for business teams on cybersecurity topics
¿ Manage and respond to clients' security questionnaires
¿ Conduct security maturity reviews and provide recommendations
6. Continuous Improvement:
¿ Stay updated on the latest developments in information security standards and ecosystem
¿ Contribute to the development of an ISS knowledge base within the organization
¿ Support the implementation of security programs (e.g., data classification, DLP)
position requisites
-
Formación
: Grado -
Idiomas
: Inglés: C1 -
Conocimientos
: gdpr, iso27001 -
Experiencia
: 3 años
Education:
Master's degree in Computer Science, Information Security, or related field
Relevant certifications (e.g., CISSP, CISM, ISO 27001 Lead Auditor, NIST CSF Practitioner)
Experience:
5+ years of experience in cybersecurity, with a focus on compliance and privacy
Experience in implementing/auditing ISO 27001, NIST CSF, and privacy regulations
Experience in information systems risk evaluation and compliance program implementation
why with Randstad?
Because we have thousands of job offers in our portal.
Because we work with the best companies offering you the best jobs.
Because we assure you all the legal guarantees in your hiring.
Because we guarantee a close follow-up after your incorporation, because we want you to be satisfied.
Because we put at your disposal our advanced technology so that you can sign your contracts and access your labor documentation in a single click.
Because we always count on you.
Enroll in this offer, you will be part of the Randstad candidate database for future employment opportunities.
Register now and find the job you are looking for!
sustainable jobs
Randstad’s ambition is to be the world’s most equitable and specialized talent company. We help talent and organizations unlock their true potential by seeking responsible opportunities that drive long-term economic sustainability, prioritizing the well-being of people and the planet.
we are sustainable employment
Our conviction that all talent, regardless of their background, has equal opportunities for success is evident in our processes, in which we promote workplace equity through diverse and inclusive teams.
commitment NetZero
We strengthen our environmental commitment to achieve carbon neutrality by 2050 through the Science Based Targets initiative (SBTi).
