IT Risk Analyst

How many times have you been frustrated looking for a job opportunity that made sense for you? We bet you've lost count… If you haven't heard of us yet, we have a story for you. If you have, we believe what we're about to tell you will make a difference!

Agap2 was founded in 2005 in Lisbon. You probably knew that already. What you may not know is that the people who work here embody the so-called agapian spirit, which they have summed up in five keywords: FAMILY, UNITY, FRIENDSHIP, TEAM SPIRIT, and LEARNING.

More than just a Cybersecurity Project, more than just an ambition, you will have the opportunity to create a career tailored to you.

Have we piqued your curiosity because you identify with what defines us?

Then keep reading to learn more!

Profile description:

• Cloud security perimeter through Software as a Service (SaaS) & Third Party usages.
• Active participation in (cloud) third party onboarding studies (risk assessment, review of cases studies, …)
• Active participation to governance/organization topics on third party cases.
• Active participation to ensure third party cybersecurity governance is in place and follow-up third party cybersecurity governance in the run.
• Contribution to the committees on the studied cases.
• Risk assessments
• Understand risk assessments already produced (based on ISO 27005/EBIOS Risk Manager) and impacts of remediations plans progresses on risks.
• Skills to follow up/challenge remediation plans implemented by service providers or entities.
• Contribute actively to risk assessments of cloud platforms and cloud applications.
• Other activities
• Contribute to maintain cloud cybersecurity risk in tools if necessary.
• Contribute to governance/organization topics related to the team.

Technical Skills:

• certification ISO 27001
• certification ISO 27005 Risk Manager and/or EBIOS Risk Manager
• Knowledge of a risk management tool such as ServiceNow or reporting tool such as Tableau
• Knowledge on Cloud specific Cyber Security (such as SOC2, CSA, ISO27017)
• Knowledge on Cyber Security control frameworks (such as NIST, CIS)
• Knowledge in project management

Language Skills:

• English (Mandatory)
• French (nice to have)

Soft Skills:

• Collaborative skills, and the ability to communicate information
• Excellent written and verbal communication skills.
• Ability to take pragmatic decisions in a changing world, in consistency with the strategic view.
• Must be a critical thinker, with strong problem-solving skills.

‍