Guardar Volver a la búsqueda Descripción Resumen Otras ofertas Added 11/06/2026Experience leading teams within GRCAble to start ASAP¿Dónde vas a trabajar?● Coordinate marketplace risk-led self-assessment activities against the updated Minimum Control Baseline.● Facilitate or support workshops with marketplace stakeholders to understand control implementation, evidence, gaps and remediation needs.● Review and challenge self-assessment responses to ensure outputs are complete, consistent and actionable.● Manage analyst-level work, including trackers, workshop packs, action logs, evidence follow-up and reporting inputs.● Consolidate marketplace outputs into clear views of risk exposure, control gaps, ownership gaps and remediation priorities.● Support remediation action planning, including owners, timelines, blockers and status reporting.● Support BAU PRA activities, including risk exception review, (BIG 4 firm) / internal audit coordination, reporting and action tracking.● Work closely with InfoSec, marketplace teams, control owners and senior stakeholders to maintain momentum and drive delivery.DescripciónReporting to the Head of this team, your main responsibilities will be:● Coordinate marketplace risk-led self-assessment activities against the updated Minimum Control Baseline;● Facilitate or support workshops with internal stakeholders to understand control implementation, evidence, gaps and remediation needs;● Review and challenge self-assessment responses to ensure outputs are complete, consistent and actionable;● Manage analyst-level work, including trackers, workshop packs, action logs, evidence follow-up and reporting inputs;● Consolidate company outputs into clear views of risk exposure, control gaps, ownership gaps and remediation priorities;● Support remediation action planning, including owners, timelines, blockers and status reporting;● Support BAU PRA activities, including risk exception review, (Big 4 firm)/ internal audit coordination, reporting and action tracking;● Work closely with InfoSec, group teams, control owners and senior stakeholders to maintain momentum and drive delivery.¿A quién buscamos (H/M/D)?● You have strong experience in information security GRC, IT controls, risk assessment, internal audit, compliance or technology assurance.● You can translate control requirements into practical questions, actions and evidence expectations for technology and marketplace stakeholders.● You are confident facilitating workshops, managing stakeholders and driving follow-up in a structured way.● You have experience reviewing control evidence, identifying gaps and supporting remediation planning.● You are comfortable managing analyst-level resources and ensuring outputs are clear, consistent and senior-stakeholder ready.● You bring a pragmatic, delivery-focused mindset and can operate in a complex, decentralised environment.Nice to have● Experience with NIS2, GDPR, ISO 27001, NIST CSF, SOC 2 or similar frameworks.● Experience with AuditBoard, Jira or similar GRC / workflow tools.● Knowledge of product security, third-party risk, vulnerability management, IAM, incident response, cloud security or security awareness.● Experience in technology, marketplace, SaaS, e-commerce or federated operating environments.● Barcelona-based or Spanish-speaking preferred.¿Cuáles son tus beneficios?Attractive salary packageAble to start ASAPFlexible hybrid work modelVer más ofertas de empleoPablo ErrazurizIndicar número de referencia para la ofertaJN-062026-7038503Resumen de empleoSectorTecnologíaSub SectorSeguridadAñadir industriaTechnology & TelecomsLocalizaciónEspañaTipo de ContractoTemporalNombre del consultorPablo ErrazurizNúmero de referenciaJN-062026-7038503
