- Support the definition, rollout, and maintenance of a unified security governance and compliance framework across PCI DSS, ISO/IEC 27001, and NIS2.
- Translate regulatory requirements into clear security controls, procedures, and documentation standards.
- Support PCI DSS and ISO/IEC 27001 audits, including planning, evidence reviews, interviews, follow-ups, and remediation tracking.
- Coordinate evidence collection with control owners, ensuring completeness, quality, and timely delivery.
- Work with technical and non-technical teams to validate effective implementation of security controls.
- Support continuous compliance activities, periodic reviews, and governance checks.
- Contribute to compliance reporting and management updates, highlighting risks, gaps, and progress.
- Ensure alignment with internal security policies and corporate governance.
- 5+ years in Security GRC, cybersecurity compliance, audit support, or governance roles.
- Hands-on experience with PCI DSS and ISO/IEC 27001 audit cycles (internal and/or external).
- Strong knowledge of PCI DSS v4.x, ISO/IEC 27001, NIS2, and ISO 22301 fundamentals.
- Ability to work with technical teams and understand technical audit evidence.
- Strong documentation, organization, and traceability skills.
- Fluent in English and Spanish.
Senior Security Specialist - European Economic Area - Asenium Consulting
Asenium Consulting European Economic Area
2 hari yang lalu
Deskripsi
We are looking for a Senior Security GRC Specialist to support the Cybersecurity function in establishing, operating, and continuously improving a unified governance and compliance framework across PCI DSS, ISO/IEC 27001, and NIS2.
Responsabilities
Must have
Apply directly or send your CV, daily rate, and availability for a call to