Cyber Risk

🚀 We’re looking for a Cloud Security Risk (Porto/Lisboa)

Who We're Looking For:

• Review, challenge, and contribute to risk assessments based on ISO 27005 / EBIOS Risk Manager, ensuring effective remediation and risk reduction.
• Actively participate in the risk assessments of cloud platforms and cloud applications.
• Challenge and monitor remediation plans implemented by service providers or entities.
• Ensure data quality and completeness of the Cloud Assets Register and Cloud Risks Register in ServiceNow.
• Prepare, improve, and provide risk reporting templates using ServiceNow or BI tools (e.g. Tableau).
• Support the preparation of quarterly cloud risk committees.
• Contribute to third-party onboarding risk assessments and case study reviews.
• Support miscellaneous governance and organisational topics related to the cyber risk team.

✅ Professional Experience & Technical Skills:

• Solid knowledge of risk management methodologies (ISO 27005 and/or EBIOS Risk Manager). Certification is a plus.
• Hands-on expertise with ServiceNow or similar risk management tools.
• Good understanding of cloud principles (AWS, Azure, GCP).
• Strong analytical and reporting skills.
• Previous experience in a Cybersecurity GRC (Governance, Risk & Compliance) role.

🌍 Language Requirement

• English – B2

Work Setup

• Hybrid