IT Risk Analyst (Hybrid)
Share
Job Location:
Monthly Salary:
Posted on:
27 days ago
Vacancies:
1 Vacancy
Job Summary
IT RISK ANALYST (HYBRID PORTO)
Portuguesecompany hires for hybrid position
Location: Porto Portugal
Start Date: ASAP
LanguageRequirements: Fluent English (C1 level) French appreciated
Seniority:6 years (must be reflected in your CV)
Instructions:Please send your CVs in English and make sure to include all skills andexperience that match the requirements of the opportunity. This willsignificantly increase your chances of success
About the Role:We are looking for a skilled IT Risk Analyst to join our team andactively contribute to cyber risk management cloud security assessmentsand governance. You will play a critical role in challenging existingrisk assessments monitoring remediation plans and improving cloud riskreporting to strengthen the organizations cybersecurity posture.
Key Responsibilities:
1. Challenge Existing Cyber RiskAssessments
- Review and analyze risk assessments based on ISO 27005 / EBIOS Risk Manager.
- Track and challenge remediation plans implemented by service providers or business entities.
- Actively contribute to risk assessments for cloud platforms and applications.
- Lead risk assessments following ISO 27005 / EBIOS methodologies (ideal).
2. Cloud Cybersecurity RiskCartography
- Monitor data quality and comprehensiveness in the Cloud Register and Cloud Risks Register using ServiceNow.
- Develop and improve risk reporting templates (ServiceNow or external tools such as Tableau).
- Provide periodic cloud risk reporting.
- Participate actively in quarterly cloud risk committees.
3. Additional Activities
- Contribute to cloud third-party onboarding studies (risk assessment case study reviews).
- Support miscellaneous governance and organizational tasks related to the team.
Technical Skills (must-have inyour CV):
- Risk management methodologies: ISO 27005 and/or EBIOS Risk Manager Expert
- ServiceNow (or similar risk management tools) Expert
- Cloud principles and security Experienced (appreciated)
- Certifications in ISO 27005 Risk Manager and/or EBIOS Risk Manager a plus
Language Skills:
- English Mastery (mandatory)
- French Practical knowledge appreciated
Soft Skills:
- Strong collaboration and teamwork abilities
- Excellent written and verbal communication skills
- Ability to challenge processes and influence stakeholders
Why Join Us
- Play a key role in shaping the organizations cyber risk strategy.
- Work with cloud technologies and risk management frameworks.
- Contribute to continuous improvement of cybersecurity governance.
Important: Onlycandidates meeting all mandatory technical and language requirementsshould apply. Ensure your CV clearly demonstrates your experience in ISO27005/EBIOS Risk Manager methodologies cloud risk assessments and ServiceNowusage.
#CI
Required Experience:
IC
Key Skills
- ISO 27001
- Microsoft Access
- Risk Management
- Financial Services
- PCI
- Risk Analysis
- Analysis Skills
- COBIT
- NIST Standards
- SOX
- Information Security
- Data Analysis Skills
