GRC Consultant Salary at Winterhawk BETA

Humanizando la Tecnología. Somos una gran empresa con alma de Start-up. Nos organizamos por unidades de conocimiento expertas que colaboran entre sí. Por ello buscamos personas inquietas, que les motiven los retos y con ganas de crecer personal y profesionalmente, que se unan a nuestro equipo para tener un impacto positivo en el mundo a través de la tecnología. ¿TE APUNTAS AL RETO? Como Especialista de GRC formarás parte de nuestro equipo de Ciberseguridad. En nuestra unidad, asumimos la responsabilidad de proteger tanto la seguridad digital de nuestros clientes, brindando un servicio cercano y de alta calidad, para garantizar un entorno seguro y la continuidad del negocio. Dentro de los servicios que tenemos en nuestro portfolio están: Ciberseguridad gestionada: SEIDOR-CSIRT - La misión del CSIRT es implementar las medidas humanas, técnicas y tecnológicas necesarias para reducir el riesgo ante incidentes de seguridad y dar respuesta cuando se requiera en todos las infraestructuras, si

Nuestro equipo en Andorra, crece y estamos en la búsqueda de un/a GRC Consultant para que se sume a nuestro team Andorrano. *Para este rol, es necesario residir actualmente y/o tener la disposición e interés de trasladar su residencia a Andorra. Dont' worry! nosotros te ayudamos con el proceso de visado* ✨ Cual será tu misión? Evaluar y fortalecer los controles internos, mitigar riesgos operacionales y de seguridad de la información, y asegurar la alineación con estándares internacionales como ISO 27001, ENS-AD, RIC-AD y marcos regulatorios aplicables. 🔍 ¿Qué buscamos? Título Universitario en: Ingeniería Informática, Ing. Telecomunicaciones, Ing. Electrónica, ing. industrial o carreras afines. Experiencia de +2 años en ejecución de auditorias de Seguridad de la información y ciberseguridad, compliance, sistemas de información e infraestructura. Certificación ISO 27001:2022 Manejo de herramientas de GRC Familiarización con herramientas de seguridad ( SIEM, IDS/IPS y DLP) Idiomas: Españ

Nuestro equipo en Andorra, crece y estamos en la búsqueda de un/a GRC Consultant para que se sume a nuestro team Andorrano. *Para este rol, es necesario residir actualmente y/o tener la disposición e interés de trasladar su residencia a Andorra. Dont' worry! nosotros te ayudamos con el proceso de visado* ✨ Cual será tu misión? Evaluar y fortalecer los controles internos, mitigar riesgos operacionales y de seguridad de la información, y asegurar la alineación con estándares internacionales como ISO 27001, ENS-AD, RIC-AD y marcos regulatorios aplicables. 🔍 ¿Qué buscamos? Título Universitario en: Ingeniería Informática, Ing. Telecomunicaciones, Ing. Electrónica, ing. industrial o carreras afines. Experiencia de +2 años en ejecución de auditorias de Seguridad de la información y ciberseguridad, compliance, sistemas de información e infraestructura. Certificación ISO 27001:2022 Manejo de herramientas de GRC Familiarización con herramientas de seguridad ( SIEM, IDS/IPS y DLP) Idiomas: Españ

Description: •Interact with internal and client teams regarding MS functionality •Help create and review functional specifications •Understand the configuration aspects of the various Metricstream modules •Help translate functional requirements from the customer into design •Practice and help enforce best practices within the team •Help prepare test scenarios and undertake the functional validation of a solution •Lead and guide a team of application developers •Help team to understand the business requirements and develop applications and configured solutions Responsibilities: •Drive the MetricStream program and liaise with client as well as internal team •Provide new solutions for existing applications for robust sustainment •Analyze MetricStream system behavior and propose system enhancements to improve Risk Management capabilities •Change and Release Management awareness •Analyze and articulate MetricStream APIs and Integrations •MetricStream Vendor Co-ordination •Partnership with I

Required Skills: ? Experience in SAP Security and GRC with at least one end to end implementation in security. Knowledge on GRC Rulesets, Violations, automation, User Lifecycle Management, Provisioning, Deprovisioning, Reconciliation, Password management, and segregation of duties SOD issues ? Define scope and gather business requirements for SAP security Roles, conceptual and detailed designs. Own and perform SAP Role Design, user administration including testing and documentation Must have project coordination experience, RFC connections ? Expert consulting knowledge in one or more of the following solutions GRC Access Control (AC), Identity Access Governance (IAG), GRC Process Control (PC), GRC Risk Management (RM), Single Sign On, SAP BTP Cloud Identity services, GRC Audit Management (AM) or Business Integrity Screening (BIS)? Hands on experience of S4 HANA systems and landscapes.

Required Skills: 8+ Year experience Evaluate & integrate SAP Fiori apps into SAP GRC Perform outside research to develop expertise in SAP GRC security functionality and industry best practices within the SAP GRC, the IT risk management and compliance space Provide technical leadership in the assessment, design, and implementation of SAP GRC security and IT risk solutions Design, implement, and support business process and IT controls in an ERP environment, including new implementations, control redesigns, or assessment of a client's ERP control framework Understand ERP configuration as it relates to the development of automated controls Strong knowledge of key business processes, the inherit risks, potential controls Understand leading practices as it relates to ERP control environments, and provide recommendations to clients on control design and implementation Assess complex governance requirements, including Sarbanes Oxley, and provide clients with leading practice recommendations a

The Information Security GRC Specialist is responsible for executing day-to-day security and governance activities, such as monitoring compliance with security policies, supporting vulnerability management efforts, and conducting IT security assessments. KEY FUNCTIONS Support the implementation and maintenance of governance frameworks to ensure best practices are applied. Following IT Security Analyst and Governance Analyst advices. Assist in developing, implementing, and enforcing policies and procedures to ensure compliance and security across the organization. Assuring compliance after IT tools have been chosen. Help to manage regular risk assessments to identify potential risks and vulnerabilities and supports the IT Security Analyst with the development of mitigation strategies. Monitor compliance with internal policies and external regulations, assisting in audits and ensuring the organization meets all legal and regulatory requirements. Ensure the life cycle, and capacity plan f

About the job Group Senior Manager, Business Audit Overview: As the Group Senior Manager Business Audit, you will play a key role in leading and managing high-quality audits across our diverse portfolio. This role involves conducting risk assessments, ensuring compliance, and supporting continuous improvement initiatives. You will work closely with executive and senior management, providing insights and recommendations to drive constructive change and enhance our governance, operational, and compliance frameworks. Key Responsibilities: Lead Complex Audits: Manage and execute comprehensive audits, both onsite and remotely, ensuring thorough planning, discovery, and reporting Portfolio Management: Oversee an allocated portion of the business audit portfolio, including bi-annual and ongoing risk assessments Stakeholder Engagement: Build and maintain strong relationships with executive/senior management, external auditors, and other key stakeholders Special Projects: Lead governance, risk,