IT Security Manager

Hiire is helping a Renewable Energy company hire an IT Security Manager for its office in Matosinhos.

Your mission:

As the person responsible for the Cybersecurity area you will lead the Groups information security strategy ensuring asset protection business continuity and alignment with the strategic objectives of the IT Directorate and the Group.

You will play a central role in defining implementing and evolving the security posture ensuring effective risk management incident response and compliance with best practices legislation and regulatory requirements in a demanding and constantly evolving environment.

This is a strategic and technical leadership role with strong cross-functional impact across the organization and direct interaction with internal teams suppliers and external security entities.

What you will do:

Leadership of the Cybersecurity Area:

• Lead the Cybersecurity area aligning the security strategy with business objectives and the IT Directorate;

• Supervise recruit and develop the team promoting a strong security culture aligned with the Group;

• Communicate with all business areas to ensure security solutions address specific needs;

• Define projects and budgets jointly with the IT Directorate focusing on continuous improvement of the security posture.

Risk Management Monitoring and Incident Response:

• Monitor asset-related risks and ensure the confidentiality integrity and availability of information;

• Coordinate the collection and analysis of threat intelligence and implement mitigation measures aligned with the business;

• Manage responses to incidents and emergencies and ensure regular testing of disaster recovery and business continuity plans.

Compliance Audit and Continuous Improvement:

• Ensure compliance with legislation and best practices across all Group companies;

• Develop and update security policies and procedures and audit assets producing monitoring indicators;

• Ensure legal regulatory and cybersecurity best-practice compliance including internal and external audits.

Technical Implementation and Solution Management:

• Design implement and manage technical solutions that protect assets while balancing security and availability;

• Manage security platforms and tools including SIEM and vulnerability management ensuring full risk lifecycle coverage;

• Support departments in implementing controls and ensuring compliance with policies and legislation.

External Relations and Coordination:

• Maintain relationships with suppliers SOCs and security entities to ensure compliance and application of best practices;

• Coordinate awareness and training initiatives to strengthen the security culture across the Group.

What you should bring:

• Higher education in Computer Engineering Telecommunications Networks and Systems or equivalent;

• Technical training or specialization in Cybersecurity;

• Security certifications namely:

  • Cisco (CCNP or higher)

  • Fortinet NSE (PCP or higher)

  • Splunk (Cybersecurity Defense Analyst or Enterprise Security Certified Admin)

  • Penetration Testing / Ethical Hacking

  • Operating system security at the administration level (Windows and Linux)

• Experience with SIEM vulnerability management and security platforms;

• Proven experience in team leadership and people development;

• Strong knowledge of risk management incident response and information security;

• Experience in defining and implementing security policies procedures and controls;

• Ability to communicate cross-functionally with technical and business areas;

• High sense of responsibility autonomy and decision-making capability in high-pressure environments;

• Experience in regulated environments and security audits;

• Proactive profile focused on continuous improvement and risk anticipation.

What we offer:

• Opportunity to join a solid and growing group with local and international impact;

• A role with high visibility autonomy and strategic responsibility;

• Collaborative environment with multidisciplinary teams and a strong focus on innovation;

• Active participation in defining the Groups cybersecurity strategy;

• Main office in Matosinhos with occasional travel to Lisbon Madrid and Luxembourg.