Who are we?
Our company is a consulting company specializing in Financial Services and insurance, always on the lookout for the best Consulting enthusiasts. We constantly try to reinvent ourselves in order to offer the most suitable place for our collaborators to develop their careers and the best alternative as a partner for our clients. Develop your career and write your own story.
Our projects:
They are characterized by a high degree of complexity, carrying out architecture, analysis and development tasks. We build ad-hoc applications and our own product for investment areas of the largest financial entities.
Due to the current growth of our clients, we need to incorporate a profile for one of our clients in Madrid, a Senior IT Risks & Cybersecurity Engineer.
Languages:
- High English spoken and written fluent (C1)
Goal:
Provide Cybersecurity services to Central IT Risk Team; specifically, a new service based on the pre-evaluation of the Cybersecurity controls evidences (based on NIST framework).
Tasks:
- Perform and coordinate meetings with stakeholders of all entities. Act as an intermediate expert between entities and Central experts.
- Perform and coordinate meetings with stakeholders of different countries.
- Evaluate the cybersecurity maturity level of the provided NIST program’s evidences for each control, aimed to demonstrate entity’s maturity level. Proven experience with the definition of action plan.
- Residual risk evaluation and compliance level.
- Propose corrective actions to mitigate risks, either technical or functional.
- Report results to Central team for final validation of the maturity status.
Deliverables:
Provide an opinion of the completion and compliance level of the provided evidences tending to demonstrate entity’s cybersecurity framework maturity level.
Skills:
- Advanced student/graduated of a computer science related career.
- Customer & result oriented (service delivery will be the heart of the activity).
- Knowledge of standards like NIST CyberSecurity Framework (NCF) or ISO/IEC27001 and best practices.
- Motivated to pick up new skills as you go.
- Problem solving skills and proactivity.
- Time management.
- Structured analyst, capable to embrace and use data analytics to assess risks, scope audits and test controls.
- Good Analytical skills.
- Ability to communicate and report to different levels in the organization
Valuable Skills:
- Autonomy Team worker, assertivity.
- Accountability and ownership.
- Basic management of the MS Office package.
- Motivated to pick up new skills as you go.
- Problem solving skills and proactivity.
- Time management.
- Structured analyst, capable to embrace and use data analytics to assess risks, scope audits and test controls.
- Good Analytical skills.
- Ability to communicate and report to different levels in the organization
- Certifications such as CISM, CISA, ISO27001 LI or LA, CISSP.