Cybersecurity Risk & Compliance Specialist (f/m/div.)
Responsabilidades
The CISO office is growing, and we are hiring a Cybersecurity Risk and Compliance Specialist. Being responsible for ensuring the organization’s information systems and processes adhere to relevant cybersecurity frameworks, regulatory requirements, and internal policies. This role involves assessing, managing, and mitigating risks while fostering a culture of compliance and proactive security practices. The specialist will collaborate with cross-functional teams to identify vulnerabilities, design control measures, and monitor the effectiveness of security programs.
Your contribution to something big:
Risk Assessment and Management
- Conduct cybersecurity risk assessments to identify potential threats, vulnerabilities, and impacts.
- Develop and implement risk mitigation strategies and recommend security controls.
- Maintain the organization’s risk register and ensure risks are regularly reviewed and updated.
Compliance and Regulatory Requirements
- Ensure adherence to industry standards (e.g., ISO 27001, NIST, GDPR).
- Monitor regulatory changes and assess their impact on the organization’s cybersecurity posture.
- Prepare and facilitate audits, both internal and external, and address any findings or gaps.
Vendor and Third-Party Risk Management
- Assess and manage cybersecurity risks associated with third-party vendors and partners.
- Review and validate vendor security assessments, certifications, and contractual obligations.
Incident Management and Response
- Support incident response efforts by ensuring compliance with policies and regulatory requirements.
- Document lessons learned and recommended updates to processes and controls.
O teu perfil What distinguishes you:
- Experience: 5/10+ years of experience in Cybersecurity, Information Technology, Risk Management, or related field.
In-depth knowledge of cybersecurity principles, risk management practices, and compliance frameworks.
Strong analytical and problem-solving skills to assess risks and develop mitigation strategies.
Familiarity with tools for compliance management, risk assessment, and security monitoring.
Ability to work collaboratively in a team and adapt to a dynamic environment.
Communication & Leadership: Excellent communication skills, with the ability to collaborate effectively across technical, business, and executive teams. Strong leadership and mentoring capabilities in guiding junior resources and providing strategic direction.
Desired Skills:
Certifications: Industry certifications such as CISSP, CISM, CRISC, CISA, or similar are highly desirable.
Strong problem-solving skills and the ability to handle complex challenges in a dynamic environment.
Experience with regulatory frameworks and standards such as ISO 27001, NIST, GDPR.
Knowledge of security tools such as SIEM, vulnerability scanners, and GRC platforms.
Experience with third-party risk management and vendor assessments.
Understanding of data privacy regulations and their application in a business context.
What distinguishes you:
- Experience: 5/10+ years of experience in Cybersecurity, Information Technology, Risk Management, or related field.
In-depth knowledge of cybersecurity principles, risk management practices, and compliance frameworks.
Strong analytical and problem-solving skills to assess risks and develop mitigation strategies.
Familiarity with tools for compliance management, risk assessment, and security monitoring.
Ability to work collaboratively in a team and adapt to a dynamic environment.
Communication & Leadership: Excellent communication skills, with the ability to collaborate effectively across technical, business, and executive teams. Strong leadership and mentoring capabilities in guiding junior resources and providing strategic direction.
Desired Skills:
Certifications: Industry certifications such as CISSP, CISM, CRISC, CISA, or similar are highly desirable.
Strong problem-solving skills and the ability to handle complex challenges in a dynamic environment.
Experience with regulatory frameworks and standards such as ISO 27001, NIST, GDPR.
Knowledge of security tools such as SIEM, vulnerability scanners, and GRC platforms.
Experience with third-party risk management and vendor assessments.
Understanding of data privacy regulations and their application in a business context.
Contato e informações adicionais
Work #LikeABosch includes:
⚖️ Flexible work conditions
🔀 Hybrid work system (2 days at the office)
🌐 Exchange with colleagues around the world
🧑⚕️ Health insurance and medical office on site (nutrition, psychology, physiotherapy and general clinic)
📚 Training opportunities (i.e., technical training, foreign languages training) & certifications
📈 Opportunities for career progression and continuous professional development
💲 Access to great discounts in partnerships and Bosch products
🏋️ Sports and health related activities (gym)
🚌 Free transports from Porto
🅿️ Free parking lot
🍽️ Canteen
Success stories don´t just happen. They are made...
Make it happen! We are looking forward to your application!
-----
At Bosch, we shape the future by inventing high-quality technologies and services that spark enthusiasm and enrich people’s lives. Our promise to our associates is rock-solid: we grow together, we enjoy our work, and we inspire each other. Join in and feel the difference in mindsets, cultures, generations, identities and perspectives. Everyone should bring their authenticity and work together respectfully. Bosch is an employer that values diversity and equal opportunities. We welcome applications from people with disabilities and we can provide reasonable accommodations during the recruitment process and in the performance of professional activity. By including everyone and ensuring equal opportunities we unleash our full potential.
Sobre nós
Apresentamos vídeos via Youtube. Para que estes vídeos sejam exibidos, é necessário ter o teu consentimento. Se consentires, os dados serão transferidos para o Youtube, os cookies serão ativados, e a rede de publicidade Google DoubleClick será contactada. Não poderá ser descartada a possibilidade de que os dados sejam transferidos para países fora do Espaço Económico Europeu.
Bem-vindo a Ovar
Em Ovar, a nossa principal missão é garantir a segurança de todos, estando prontos a atuar em caso de perigo. A nossa empresa, com cerca de 1200 colaboradores, desenvolve, cria e produz soluções inspiradoras para uma vida segura e agradável. Este sucesso deve-se às pessoas altamente qualificadas e com um elevado nível de conhecimento e à sua dedicação que faz e contribui para o ambiente único que temos na Bosch: O sentimento de uma Família.
Utilizamos o serviço de mapas do Google Maps. Para que um mapa seja exibido, primeiro você precisa dar o seu consentimento. Se consentir, os dados serão transferidos para o Google, serão utilizados cookies e a rede de publicidade Google DoubleClick será contatada. Isso pode desencadear operações adicionais de processamento de dados. Não se pode excluir a possibilidade de que os dados também sejam transferidos para países fora do Espaço Econômico Europeu.
Você pode revogar o seu consentimento com efeito imediato e futuro a qualquer momento recarregando o site
3880-728 Ovar
PT

Benefícios da localização
Descontos para colaboradores
Trabalho flexível e híbrido
Estacionamento gratuito
Consultório médico na empresa
Oportunidades de formação & de Certificação
Atividades de saúde e desporto
Cantina
Seguro de saúde
Colaboração com colegas de todo o mundo
Vagas semelhantes
Precisas de suporte técnico?
Aguardamos o teu contacto