Cybersecurity Program Control Officer

Location: Lisbon, Portugal (Hybrid model)

English: Advanced

At Hexa Consulting we want to spread transparency and enable diverse tech careers.

Our mission is to build strong relationships, be a leading partner through a differentiated approach in IT consulting and contribute to the professional and personal development of our team.

We work with Nearshore projects, TM & Project Development, Service Management and Tech Academies.

We’re looking for a Cybersecurity Program Control Officer to join our team in Lisbon!

Responsibilities:

• Support the definition, development, and implementation of the cybersecurity strategy aligned with CIB and local territory objectives
• Assist in project and program steering activities, ensuring alignment with cybersecurity goals and timelines
• Adapt global CIB project and program plans to local territory specificities and context
• Prepare and support governance committees, engaging with stakeholders across different management levels
• Communicate project status, risks, and progress to relevant internal and external stakeholders
• Produce and maintain project documentation, including plans, reports, risk analyses, and security procedures
• Support resource management activities, including budget and FTE planning, tracking, and reporting
• Lead cybersecurity maturity assessments within the territory
• Evaluate security posture against defined cybersecurity frameworks and standards
• Collect, analyze, and challenge maturity evidence to ensure accuracy and completeness
• Contribute to project scoping and roadmap definition to achieve target maturity levels

Technical Requirements:

• Strong knowledge of cybersecurity frameworks and standards (ISO 27001, NIST)
• Expertise in regulatory standards and ability to translate them into internal policies
• Solid understanding of IT and cybersecurity regulatory environments
• Proven experience in control and compliance activities, ensuring adherence to procedures
• Good understanding of cybersecurity risks, controls, and governance practices
• Working knowledge of IT systems, processes, and enterprise architectures
• Ability to assess and challenge risk decisions and provide informed risk opinions
• Proficiency in Microsoft Office tools, particularly Excel (including macros) and PowerPoint

Requirements:

• Proven experience in cybersecurity governance, risk, or program management roles
• Strong organizational and project coordination skills with attention to detail
• Excellent communication skills, both written and verbal, with the ability to interact across all levels of the organization
• Ability to influence stakeholders and drive alignment in complex environments
• Strong analytical and critical thinking skills, with the ability to challenge information constructively
• Ability to synthesize complex topics into clear and concise messages
• High adaptability and ability to manage change effectively
• Collaborative mindset with strong teamwork capabilities
• Ability to build and leverage professional networks
• Professional proficiency in English; knowledge of French is a plus

If you feel your profile matches this role, please send us your CV. We look forward to hearing from you.