Job Title: Cybersecurity GRC Officer (Contract)
Location: Dublin; 3 / 4 days per week onsite
Duration: 12 months initially
Our client, a global consulting firm, is hiring a Cybersecurity GRC Officer on a contract basis to join their team in Dublin. The successful candidate will lead and manage their Third-Party Risk Management (TPRM), Payment Card Industry (PCI) compliance, and Network and Information Systems Directive 2 (NISD2) obligations. Applicants should possess a strong background in cybersecurity governance, risk, and compliance, with a focus on hybrid cloud environments and managing a large vendor landscape.
Responsibilities
* Lead and manage TPRM, PCI, and NISD2 compliance initiatives to ensure alignment with relevant regulations and standards.
* Develop and implement policies, procedures, and controls for compliance across the organization.
* Conduct regular cybersecurity audits and assessments to evaluate security posture and compliance.
* Monitor and report on compliance status and risk management activities.
* Provide guidance to other departments on cybersecurity best practices and compliance requirements.
* Manage supplier/vendor governance in relation to cybersecurity and contractual compliance.
* Evaluate and manage cybersecurity risks associated with suppliers and vendors.
* Prepare and deliver comprehensive GRC reports to the Security Manager and the organization’s governance structure.
* Conduct regular risk assessments to identify and evaluate cybersecurity risks.
* Assist in planning and executing internal and external security audits and ensure timely resolution of audit findings.
Skillset
* Bachelor’s degree in Cybersecurity, Information Technology, or equivalent.
* Relevant cybersecurity certifications (e.g. CISSP, CISM, CISA) are highly desirable.
* Minimum of 3 years of experience in cybersecurity governance, risk, and compliance.
* Experience with cybersecurity audits and assessments.
* Strong understanding of TPRM, PCI, and NISD2 regulations and requirements.
* Proficiency in cybersecurity frameworks and standards (e.g. NIST, ISO 27001, PCI).
* Familiarity with risk management tools and methodologies.
* Ability to work effectively in a hybrid cloud environment with a large vendor landscape.
* Excellent stakeholder management and communication skills.
* Strong project management skills.
#J-18808-Ljbffr