🚀We are looking for the very Top Talent…and we would be delighted if you were to join our team!

More in details, UST is a multinational company based in North America, certified as a Top Employer company with over 35.000 employees all over the world and presence in more than 30 countries. We are leaders on digital technology services, and we provide large-scale technologic solutions to big companies.

🔎 What are we looking for?

We are looking for a Governance, Risk & Compliance Specialist to contribute for a project with one of our global customers pioneer in the security field.

📍Work location: Madrid

Work mode: Hybrid, Madrid. 1-2 days a week in the office or customer site.

Languages:

• English C1

📋Experience & Qualifications Required

• 2+ years’ experience in audits and compliance and assessments based on national and international standards (ISO27001, ISO22301, ENS, NIST, DORA, NIS2)

• Knowledge/certifications in ISO27001 is a must. It is also desirable knowledge in ENS, ISO 27005, ISO22301, ISO 42001, NIST CSF 2.0, NIST, SOC 2, GDPR, DORA, NIS2, CMMC 2.0

• Proficiency with a variety of instruments for assessing and controlling risk (ex. ISO 31000, Magerit v3, COSO)

• Experience in implementation of best practices, compliance with information security policies and standards.

• Technical experience or applicable knowledge in security architectures for different environments.

• Experience related to Cybersecurity ecosystem, deployment experience of security technologies.

• Knowledge of different security solutions/technologies: FW, DLP, IDS/IPS, EDR…

• Experience in incident response plans and exercises

It is also desirable and will be considered to hold certifications such as CISM, CISSP, CISA, ISO/IEC 27001 Lead Auditor / Lead Implementer.

We will also consider knowledge of HIPAA, ARC-AMPE or OT Cybersecurity (ISO 27019 / IEC 62443) for the more senior role

📋Key Roles & Responsibilities:

• Handle the assigned tasks from the allocated domain with minimal guidance from the leads. (Domain Examples: BCMS, ISMS, Risk assessment (AARR & BIAs), GAP Analysis, Incident management, Awareness activities, Data Privacy, etc.)
• Independently handle (with very minimal guidance from the supervisors) internal audits or GAP Analysis to ensure compliance with security standards (ex. ISO 27001/ISO 22301/ISO 27701, NIST CSF 2.0, ..) requirement as well as process specific requirements
• Directly Interact with customer and communicate detailed technical requirement to the team.
• Policy/Procedure creation activities and process improvement ideas to be implemented.

💰What can we offer?

✈️ 23 days of Annual Leave plus the 24th and 31st of December as discretionary days!

❤️ Numerous benefits (Health Care Plan, teleworking compensation, Life and Accident Insurances).

🍴 `Retribución Flexible´ Program: (Meals, Kinder Garden, Transport, online English lessons, Health Care Plan…)

🎓 Free access to several training platforms

🚀 Professional stability and career plans

🚶 UST also, compensates referrals from which you could benefit when you refer professionals.

🔗 The option to pick between 12 or 14 payments along the year.

🏡 Real Work Life Balance measures (flexibility, WFH or remote work policy, compacted hours during summertime…)

🎁 UST Club Platform discounts and gym Access discounts

📧 If you would like to know more, don’t hesitate to apply and we’ll get in touch to fill you in detail. We are waiting for you!

In UST we are committed to equal opportunities in our selection processes and do not discriminate based on race, gender, disability, age, religion, sexual orientation or nationality. We have a special commitment to Disability & Inclusion, so we are interested in hiring people with disability certificate.