Cybersecurity Governance Risk & Compliance Lead (Madrid - Hybrid)
Montarelo Recruiting
Cybersecurity Governance Risk & Compliance Lead (Madrid - Hybrid) Para ser considerado para una entrevista, por favor, asegúrese de que su solicitud se ajusta plenamente a las especificaciones del puesto que se encuentran a continuación.
The company : Our customer is a technology-based startup with solid funding that is in the midst of expansion. They will hire the selected candidate as an internal and permanent employee, based in Madrid, but providing services to their global organization. Description of the position : We’re looking for a Governance Risk & Compliance Lead for its global operations in Madrid. He/She will be responsible for designing and operationalizing the company’s governance, risk, and compliance framework. Reporting to the Head of Information Security, he/she will play a critical role in enabling company growth by ensuring regulatory readiness, managing risk, and embedding security and compliance into business and product operations. Key Responsibilities and tasks : Lead the implementation of GDPR, ISO 27001, SOC 2, and NIS 2 compliance programmes, with a roadmap aligned to business priorities and client expectations. Develop and maintain policies, procedures, and controls that support certification and audit readiness. Coordinate with external auditors, consultants, and vendors to streamline evidence collection and reporting. Operationalize the NIST Cybersecurity Framework across the corporate, product and operational domains Conduct regular risk assessments and maintain a centralized risk register. Collaborate with IT, Product and Legal teams to ensure risk mitigation strategies are prioritized correctly. Governance & Policy Enforcement : Establish governance structures for security and compliance decision-making. Run regular risk committees and track related actions. Maintain and enforce policies such as password management, access control, and vendor risk. Reporting & Communication : Provide regular updates to executive leadership on compliance progress, risk posture, and audit outcomes. Develop dashboards and visualizations to communicate timelines and milestones to stakeholders. Act as the primary liaison for compliance-related queries from clients, partners, and regulators. Working Experience: 5+ years of proven experience in cybersecurity landscape within cloud-first or SaaS organisations. At least 2+ years in GRC roles. Working experience of GDPR, ISO 27001, SOC 2, NIS 2, and NIST CSF. Familiarity with compliance automation platforms (e.g., Vanta, OneTrust). Not mandatory but preferred : Lead on ISO 27001, SOC2 or GDPR compliance implementation. In-depth knowledge of the NIS2 directive. Working knowledge of Azure cloud environments. Working knowledge of OT security. Excellent communication and stakeholder management skills. International work experience working with international teams. Education and Training: Bachelor's Degree or vocational training qualification: In information technology, or a related field. Certifications : Not mandatory but preferred Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC), or ISO 27001 Lead Implementer. Languages: Spanish: Very good Business Spanish required (excellent communication skills). B2/C1 level. English: Very good Business English required (excellent communication skills). B2/C1 level. Job Conditions: Job location: Tres Cantos (Madrid). EU nationality or valid EU/Spain work permit required. Employment Type: Permanent Full Time, as internal employee. Salary: Depending on qualification and experience. Work from home: Hybrid working model including the possibility of working from home (70%) but according to the specific needs that may arise from the perspective of project development, department, clients, and/or partners. xqbhyrx How to apply: If you are interested, please apply here or email with the subject Governance Risk & Compliance Lead and your English CV. Seniority level Mid-Senior level Employment type Full-time Job function Information Technology Industries IT Services and IT Consulting and Space Research and Technology #J-18808-Ljbffr
Hay opciones de teletrabajo/trabajo desde casa disponibles para este puesto.
The company : Our customer is a technology-based startup with solid funding that is in the midst of expansion. They will hire the selected candidate as an internal and permanent employee, based in Madrid, but providing services to their global organization. Description of the position : We’re looking for a Governance Risk & Compliance Lead for its global operations in Madrid. He/She will be responsible for designing and operationalizing the company’s governance, risk, and compliance framework. Reporting to the Head of Information Security, he/she will play a critical role in enabling company growth by ensuring regulatory readiness, managing risk, and embedding security and compliance into business and product operations. Key Responsibilities and tasks : Lead the implementation of GDPR, ISO 27001, SOC 2, and NIS 2 compliance programmes, with a roadmap aligned to business priorities and client expectations. Develop and maintain policies, procedures, and controls that support certification and audit readiness. Coordinate with external auditors, consultants, and vendors to streamline evidence collection and reporting. Operationalize the NIST Cybersecurity Framework across the corporate, product and operational domains Conduct regular risk assessments and maintain a centralized risk register. Collaborate with IT, Product and Legal teams to ensure risk mitigation strategies are prioritized correctly. Governance & Policy Enforcement : Establish governance structures for security and compliance decision-making. Run regular risk committees and track related actions. Maintain and enforce policies such as password management, access control, and vendor risk. Reporting & Communication : Provide regular updates to executive leadership on compliance progress, risk posture, and audit outcomes. Develop dashboards and visualizations to communicate timelines and milestones to stakeholders. Act as the primary liaison for compliance-related queries from clients, partners, and regulators. Working Experience: 5+ years of proven experience in cybersecurity landscape within cloud-first or SaaS organisations. At least 2+ years in GRC roles. Working experience of GDPR, ISO 27001, SOC 2, NIS 2, and NIST CSF. Familiarity with compliance automation platforms (e.g., Vanta, OneTrust). Not mandatory but preferred : Lead on ISO 27001, SOC2 or GDPR compliance implementation. In-depth knowledge of the NIS2 directive. Working knowledge of Azure cloud environments. Working knowledge of OT security. Excellent communication and stakeholder management skills. International work experience working with international teams. Education and Training: Bachelor's Degree or vocational training qualification: In information technology, or a related field. Certifications : Not mandatory but preferred Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC), or ISO 27001 Lead Implementer. Languages: Spanish: Very good Business Spanish required (excellent communication skills). B2/C1 level. English: Very good Business English required (excellent communication skills). B2/C1 level. Job Conditions: Job location: Tres Cantos (Madrid). EU nationality or valid EU/Spain work permit required. Employment Type: Permanent Full Time, as internal employee. Salary: Depending on qualification and experience. Work from home: Hybrid working model including the possibility of working from home (70%) but according to the specific needs that may arise from the perspective of project development, department, clients, and/or partners. xqbhyrx How to apply: If you are interested, please apply here or email with the subject Governance Risk & Compliance Lead and your English CV. Seniority level Mid-Senior level Employment type Full-time Job function Information Technology Industries IT Services and IT Consulting and Space Research and Technology #J-18808-Ljbffr
Hay opciones de teletrabajo/trabajo desde casa disponibles para este puesto.
Oferta de empleo publicada 13 días atrás
Ofertas similares que pueden interesarteSegún la Cybersecurity Governance Risk & Compliance Lead (Madrid - Hybrid) en Madrid
- ...entidad financiera europea está buscando un Head of Cybersecurity Services and Governance & Compliance Lead para liderar su equipo de ciberseguridad. Con más... ...inglés avanzado. Esta posición ofrece un entorno de trabajo híbrido y flexible en Madrid. #J-18808-Ljbffr...Trabajo híbridoHorario flexible
CyberLideria MGZN
Madrid1 día atrás - ...technology-based startup is seeking a Governance Risk & Compliance Lead in Madrid. Desplácese hacia abajo para... ...has over 5 years of experience in cybersecurity, specifically in a SaaS... ...English. This position offers a hybrid working model and requires a valid...Trabajo híbridoDesde casaVisa de trabajo
- CaixaBank Group busca un/a Data Quality en Madrid para impulsar su transformación Data driven. La persona seleccionada liderará proyectos analíticos, asegurará la calidad de los datos y colaborará con distintos equipos. Se requiere formación universitaria superior y experiencia...Trabajo híbridoHorario flexibleLunes a miércoles
CaixaBank Group
Madrid3 días atrás - ...Senior Cybersecurity Regulatory Consultant If you aspire to be... ...Cybersecurity sector within the Governance, Risk, and Compliance area to take on high-... ...In our team, you will lead Cybersecurity and Compliance... ...WHAT DO WE OFFER YOU? Hybrid work model and 8 weeks...Trabajo híbridoTrabajo de veranoRemotoHorario flexible
GMV Spain
Madrid1 día atrás - Una empresa líder en tecnología en Madrid busca un Technical Cybersecurity Manager. Serás responsable de la implementación de controles de seguridad en cloud y entornos SaaS. Buscamos candidatos con más de 5 años de experiencia en ciberseguridad y conocimiento en arquitecturas...Trabajo híbrido
CyberLideria MGZN
Madrid1 día atrás - ...Pasiona Consulting Sl busca un/a Security Consultant para unirse a un proyecto internacional de ciberseguridad en Madrid. Participarás en la gestión de vulnerabilidades y la automatización de procesos de seguridad. El candidato ideal tendrá una titulación universitaria...Trabajo híbridoRemoto
Pasiona Consulting Sl
Madrid1 día atrás - ...across data layers. Candidates should have 8–10 years of experience in data-related roles, emphasizing cloud environments and data governance frameworks. The position supports remote and on-site collaboration, fostering innovation and growth within a dynamic team. #J-...Trabajo híbridoRemoto
na Getnet
Boadilla del Monte, Comunidad de Madrid3 días atrás - ...Véringer Ingeniería Avanzada busca un profesional para liderar la disciplina civil en proyectos EPC/EPCM del sector cemento en Madrid. Se valorará una experiencia superior a 15 años, con al menos 10 años en proyectos de cemento. Ofrecemos un modelo de trabajo híbrido...Trabajo híbridoRemoto
Véringer Ingeniería Avanzada
Madrid16 horas atrás - ...Thales Group, located in Madrid, is seeking an Offer Owner for Cybersecurity Integration Services. This strategic role involves managing and evolving the lifecycle... ...platforms. You will define the value proposition and lead the go-to-market strategy while collaborating with...Trabajo híbrido
Thales Group
Madrid3 días atrás - A leading tech firm is seeking a knowledgeable Cybersecurity Manager for Space projects in Madrid. This role involves developing protection strategies... ...security breaches, and providing risk assessments. The ideal... ...effectively with teams. A hybrid working model and competitive...Trabajo híbrido
GMV Spain
Madrid2 días atrás - A global consulting firm located in Madrid is seeking an Artificial Intelligence Consultant... ...design and implementation of their AI governance model. The ideal candidate will monitor... ...team that fosters innovation. This is a hybrid role offering competitive benefits,...Trabajo híbrido
Talan Group
Madrid1 día atrás - ...supporting a global organisation in Madrid, Spain, seeking a Cybersecurity Governance Manager to enhance their... ...cybersecurity policies, ensuring regulatory compliance, and advising stakeholders across... ...in Cybersecurity Governance, Risk & Compliance. xqbhyrx Strong understanding...
- ...Digitalization Manager to lead our IT Department in Madrid. You will manage IT... ...transformation projects, and ensure compliance with global regulations.... ...strong skills in cybersecurity, cloud technologies, and... ...role offers a full-time, hybrid working model, fostering...Trabajo híbridoTiempo completo
Exceptional Dental
Madrid1 día atrás - ...Group Plc is seeking a skilled professional to drive effective Governance in Group Networks Architecture and support the network leadership... ...architectures and vendor management. The position offers a hybrid work model and generous benefits including private health insurance...Trabajo híbrido
Vodafone Group Plc
Madrid2 días atrás - ...Clicars busca un líder en Data Governance y Business Intelligence en Madrid. El candidato ideal debe tener entre 4 y 8 años de experiencia y dominar SQL y Python. Ofrecemos un salario entre 40K y 60K, un horario híbrido y beneficios como formación y seguros de salud....Trabajo híbrido
Clicars
Madrid1 día atrás - ...Atos Group is a global leader in digital... ...European number one in cybersecurity, cloud and high performance... ...Optimization Specialist to lead end-to-end process improvement... ...technology teams. ~ Hybrid working model... ...Environment, Social and Governance (ESG) criteria. Find...Trabajo híbrido
Atos SE
Madrid4 días atrás - ...The Role We're looking for a Lead AI Engineer to drive Fever's company-wide... ..., cost control, prompt and model governance, safety, and long‑term maintainability... ...accountability. This role is based in our Madrid office. We work in a hybrid setup with strong in‑person...Trabajo híbridoTrabajar en la oficinaDesde casa
慨正橡扯
Madrid1 día atrás - ...Technical Product & Solution Design Madrid (Hybrid) | Reporting to CTO We’re... ...the application portfolio, leading product discovery, and... ...processes. What you’ll do Lead solution design and product... ...reading) Infrastructure & cybersecurity awareness Confidence...Trabajo híbridoTrabajo de verano
Conficio Recruitment Limited
Madrid3 días atrás - A leading financial services company in Madrid seeks a Team Lead IT Management to guide a distributed team in Switzerland and Spain. You will oversee the... ...Level Agreements (SLAs) and coordinate Governance, Risk & Compliance activities. The ideal candidate has extensive...RemotoHorario flexible
SIX Group Services Ltd.
Madrid23 horas atrás - ...?es Ltda. is seeking a Data Governance & Data Platform Architect based in Madrid. This role involves leading global data governance initiatives... ...across countries to ensure compliance and quality standards. The... ...excellence within a hybrid work model, offering flexible...Trabajo híbrido
GetNet Comunica??es Ltda.
Madrid2 días atrás - ...Aserta Europa busca un/a Information Security Officer en Madrid para dirigir la estrategia de ciberseguridad. Asegúrese de presentar su candidatura con toda la información solicitada, tal como se expone en la descripción del puesto a continuación. Este puesto clave...Trabajo híbridoDesde casa
- ...Arktic busca un Gobernanza & Transformación Manager para liderar iniciativas estratégicas en Madrid. Por favor, verifique que tiene el nivel de experiencia y las cualificaciones adecuadas leyendo la descripción completa de esta oportunidad a continuación. Esta posición...Trabajo híbridoDesde casa
- Impala Terminals Group is seeking a qualified OT Cybersecurity Manager to oversee audits, risk management, and compliance with cybersecurity standards. The role involves... ...for maintaining compliance and protecting operational integrity in Madrid, Spain. #J-18808-Ljbffr...
Impala Terminals Group
Madrid2 días atrás - ...an experienced professional in OT cybersecurity to coordinate security audits and manage cyber risks. The role requires 5-7 years of... ...responsibilities include conducting risk assessments, managing third-party risks, and ensuring compliance with training and awareness...
Puma Energy
Madrid3 días atrás - ...Job&Talent in Madrid is seeking a GRC Lead to drive the Governance, Risk, and Compliance function. You will ensure compliance with SOX, ISO 27001, and GDPR while enabling the business to move fast in a secure manner. Your role involves managing the GRC strategy, leading...
Job&Talent
Madrid4 días atrás - A dynamic technology company in Madrid seeks an AI Governance Manager to lead the global AI governance, risk management, and compliance framework. This leadership role entails defining policies, integrating AI governance with existing systems, and ensuring compliance with...
SAMY
Madrid4 días atrás - Grupo-Digital busca un Senior Security Specialist para un importante cliente en Madrid. El candidato ideal tendrá una sólida experiencia en ciberseguridad, diseño e implementación de arquitecturas de seguridad, y conocimientos en soluciones perimetrales. El rol es híbrido...Trabajo híbrido
Grupo-Digital
Madrid4 días atrás - ...Management Platform (CDE) Lead/Owner Workload 80 -... ...integrations and data governance, train and support... ...change control. - Ensure compliance, security, and data... ...month. Why Axpo and Madrid - Opportunity to make... ...Madrid Remote status Hybrid Autodesk Forma, Dalux...Trabajo híbridoEmpleo permanenteRemotoHorario flexible
Axpo Group
MadridHace 2 meses - ...opportunities to lead, and a culture where... .... Data Governance & Data Platform Architect... ...Global Data Team, Madrid This role combines... ...regulatory compliance, operational excellence... ...business domains (Risk, Finance,... ...development programmes. Hybrid collaborative...Trabajo híbrido
GetNet Comunica??es Ltda.
Madrid2 días atrás - Grupo Digital busca un Cybersecurity Incident Manager para liderar la respuesta a incidentes críticos en Madrid. ¿Tiene las habilidades necesarias para este puesto? Lea todos los detalles a continuación y presente su candidatura hoy mismo. Con más de 5 años de experiencia...Trabajo híbridoDesde casa
¿Quieres recibir más ofertas?
Suscríbete y recibe ofertas similares para Cybersecurity Governance Risk & Compliance Lead (Madrid - Hybrid). ¡Entérate antes que nadie!
