Ativa os alertas de emprego por e-mail!
Senior Security Engineer And Grc Specialist
Boost IT - part of emagine
Leiria
Presencial
EUR 50 000 - 80 000
Tempo integral
Melhora as tuas possibilidades de ir a entrevistas
Resumo da oferta
A leading global consulting company based in Portugal seeks a Security Engineer to strengthen its cybersecurity practices. Candidates should possess 8-12 years of experience in security engineering and governance, risk, and compliance (GRC). The role involves applying security protocols, conducting risk assessments, and collaborating on security best practices in a dynamic environment. Strong knowledge of regulations such as NIS2 and GDPR alongside relevant certifications is preferred.
Qualificações
- 8-12 years of experience in cybersecurity.
- Strong familiarity with NIS2, GDPR, ISO 27001.
- Certifications like CISSP, CRISC, or CISA preferred.
Responsabilidades
- Apply secure configurations and automate security processes.
- Identify IT security risks and design mitigation strategies.
- Act as a trusted advisor on security best practices.
Conhecimentos
Formação académica
Ferramentas
Descrição da oferta de emprego
At emagine Portugal, we believe in the power of talent to drive innovation.
As a global consulting company, we connect top professionals with some of the most exciting and technologically advanced projects across Europe.
With a strong presence in Portugal, we are committed to delivering value through expertise, collaboration, and agility.What You'll Be Doing:Security EngineeringApply secure configuration baselines and hardening across OS, databases, and cloud platformsAutomate security processes to boost efficiency and reduce manual effortSupport security and vulnerability assessments and patch implementationContribute to threat hunting, root cause analysis, and incident responseRisk, Compliance & GovernanceIdentify and assess IT security risks; design and monitor mitigation strategiesDefine and enforce security policies, standards, and proceduresEnsure compliance with key regulations and frameworks: NIS2, GDPR, ISO 27001, NIST, IEC 62443, Chinese cybersecurity regulationsPerform third-party risk assessmentsSupport implementation of business continuity and incident response plansCollaboration & CommunicationAct as a trusted advisor to internal teams on security best practicesTranslate complex security concepts into actionable guidance for both technical and non-technical audiencesWhat We're Looking For:Bachelor's degree in Information Security, Computer Science, or related field8–12 years of experience in cybersecurity, with both GRC and hands-on engineering backgroundStrong understanding of NIS2, GDPR, ISO 27001, NIST, and Chinese data/cybersecurity regulationsWorking knowledge of Azure, AWS, or OCI cloud security servicesExperience with tools like SIEM, EDR, vulnerability scanners, and cloud-native security controlsSolid grasp of IAM concepts (SSO, MFA, PAM, access reviews)Familiarity with GRC tools, risk assessments, and data protection best practicesCertifications such as CISSP, CRISC, CISA, or ISO/IEC 27001 Lead Auditor are a strong plusWhat Sets You Apart:Strong technical depth and hands-on engineering mindsetStrategic thinking with a pragmatic, solutions-oriented approachClear and persuasive communication across stakeholdersAdaptability to evolving threats, technologies, and regulationsInterested?Send your application to ******
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
mais rapidamente
