Arrow Dropdown arrow Play

Risk & Compliance Auditor/Analyst

Systems and IT

Salary: Competitive

Location: Porto Salvo, Portugal

Posted: 26 Oct 2018

Main Purpose of the Role

To act as the specialist and provide support in internal security audits, information & compliance security management and Business Continuity / Disaster Recovery Plans.

Key Responsibilities

  • Plan and execute information security internal audits on critical controls (CIS top 20, ISO 27001, ISO 22301, GSMA SAS, other);
  • Monitor business compliance against Truphone information security policies' requirements;
  • Support the information security risk management process;
  • Support the vulnerability management process;
  • Define and implement controls for Business Continuity & Resilience over Truphone critical services
  • Support internal and external audits to information security certifications (ISO 27001, ISO 22301, UK Cyber Essentials Plus, GSMA SAS, etc);
  • Define, Review and Monitor Truphone information security policies and controls.

Skills and Experience Required

  • Significant awareness of relevant compliance requirements.  Experience in Systems Business Continuity/Disaster Recovery, plus Risk & Compliance Management.
  • Ability to develop and maintain policies and standards.
  • Experience in performing IT security audits, security vulnerability assessments, system configuration verifications and security related assignments.
  • Manage the relationships with supplier / partners to assure levels of Security & Compliance capabilities are commensurate
  • Excellent communication, reporting and interpersonal skills.


NO agencies please. We work very closely with only agreed suppliers and will not accept any CVs from any 3rd parties.

Apply now

No agencies. We do not accept CVs from 3rd parties

Apply now

No agencies. We do not accept CVs from 3rd parties