Senior Cybersecurity, Risk and Regulatory Compliance Consultant

At GMV, you will join an expert cybersecurity team leading strategic projects to 🔐 protect the information and systems of leading organizations.

Your mission will be to lead teams to ensure that our clients comply with regulations such as ISO 27001 or ENS, preparing them for new regulatory frameworks such as NIS2 or CRA and strengthening their security posture.

You will coordinate projects that combine technology, risk management and regulatory compliance, giving you the opportunity to address security from every angle while interacting with different departments and clients from various sectors (space, banking, insurance, industry…), providing a cross-sector perspective on cybersecurity. 🌍

We like to get straight to the point. We'll tell you what you won't find online. If you want to learn more about us, visit the GMV website.

WHAT CHALLENGE WILL YOU TAKE ON?

🔐 Lead cybersecurity and regulatory compliance projects, advising top-tier clients.

👥 Contribute to team development in risk analysis and risk management, as well as in the creation of security policies, processes and security plans, supervising their proper execution.

🛡️ Collaborate with technical and business teams to ensure that security is integrated from design through operations.

📑 Contribute to the development of the cybersecurity consulting service catalogue, participating in innovation and pre-sales activities in collaboration with the commercial team.

WHAT DO WE NEED IN OUR TEAM?

We are looking for a professional with a background in information security with a global mindset and the ability to lead impactful projects.

🎓 Degree in Engineering, Computer Science or a related field.

🔐 Experience in information security (at least 5 years).

☁️ Experience in Cloud and Web architectures and their security components.

📊 Strong experience in risk, threat and vulnerability management and analysis.

📑 Experience working with security regulations and standards (ISO 27001, ENS, etc.).

We will especially value:

👥 Previous experience (+5 years) in cybersecurity or regulatory compliance areas.

📜 Experience developing policies and leading security projects.

🤝 Certifications such as ISO 27001 Lead Auditor/Implementer, CISA, CISSP, CISM, CRISC, PMP, PMI-ACP.

🗂️ Knowledge of OT cybersecurity.

WHAT DO WE OFFER YOU?

💻 Hybrid work model and 8 weeks per year of remote work outside your usual geographical area

🕑 Flexible working hours with flexible start and finish times, plus shorter working days on Fridays and during summer.

🚀 Development of a personalized career plan, training opportunities and support for language learning.

🌍 National and international mobility. Coming from another country? We offer a relocation package.

💰 Competitive compensation with regular reviews, flexible benefits and brand discounts.

💪 Wellbeing program: medical, dental and accident insurance; free fruit and coffee; training in physical, mental and financial wellbeing, and much more!

⚠️ In our recruitment processes you will always have phone and personal contact, either in person or online, with our talent acquisition team. We will never request bank transfers or card details. If someone contacts you through a different process, please contact the person responsible for the recruitment process.

❤️ We promote equal opportunities in hiring and are committed to inclusion and diversity.

WHAT ARE YOU WAITING FOR? JOIN US

If you have any questions, feel free to contact Clara Sánchez Lobato, responsible for this position.