CyberSecurity Analyst

At Hexa Consulting we want to spread transparency and enable diverse tech careers. Based in Portugal, we can answer the increasing demand in the IT sector.

Our mission is to build strong relationships, be a leading partner through a differentiated approach in IT consulting and contribute to the professional and personal development of our team.

We work with Nearshore projects, TM & Project Development, Service & Service Management, and Tech Academies.

We are looking for a CyberAecurity Analyst to help us in a very ambitious project!

Responsibilities

• Engage with clients to assess and improve their IT GRC frameworks, policies, and procedures.
• Lead risk assessments, compliance audits, and gap analyses for clients across various industries.
• Design and implement IT GRC solutions that align with client business objectives and regulatory requirements.
• Provide expert advice on IT governance, risk management, and compliance strategies.
• Develop and deliver training and workshops on IT GRC topics for clients.
• Manage operationally multiple client engagements simultaneously, ensuring high-quality deliverables and adherence to timelines.
• Stay abreast of industry trends, regulatory changes, and advancements in technology that may impact clients' GRC strategies.

Profile:

• Bachelor's or master’s degree in information technology, Cybersecurity, Risk Management, or a related field.
• Professional certification such as ISO27001, CRISC, CGEIT, or CISSP is preferred (not mandatory).
• Minimum of 3 years of experience in IT GRC, with a focus on consulting or advisory services.
• Proven track record of delivering high-quality consulting services to clients.
• Strong understanding of IT governance frameworks (e.g., COBIT, ITIL) and risk management methodologies.
• Familiarity with compliance standards and regulations such as ISO 27001, GDPR, DORA, etc.
• Willingness to travel as needed to meet client requirements.