WE ARE HIRING

Cyber Program CIB Control Officer

Employer/Client

A leader in the financial services sector.

Location

Porto, Portugal – Hybrid model (2 days/week on-site).

Work experience

+6 years.

Type of employment

Full-time & Permanent.

Who is our client?

A leading financial services institution operating multiple subsidiaries, currently strengthening its Transverse Strategic Platforms (TSP) — software solutions that support the digital infrastructure of its group companies.

What is our client looking for?

The Cybersecurity program control officer ensures project portfolio management for territory cybersecurity maturity assessment, while integrating our Cyber Security department in Portugal.

Responsibilities:

• Support the steering of cybersecurity programs and projects, ensuring alignment with strategic objectives across the territory.
• Contribute to defining and implementing a long-term cybersecurity trajectory tailored to business priorities and local requirements.
• Adapt global security programs to territory-specific contexts, translating high-level goals into actionable local initiatives.
• Lead the preparation and facilitation of cybersecurity committees, collaborating with stakeholders at all management levels.
• Act as a central point for territory program reporting, ensuring clear communication and progress tracking with both internal and external stakeholders.
• Drive documentation efforts across security initiatives, including project plans, risk analyses, reports, and procedures.
• Assist in managing project resources and tracking cybersecurity budgets, including FTE planning and financial monitoring.
• Lead cybersecurity maturity assessments for the territory, evaluating security posture against industry frameworks and organisational targets.
• Collect, validate, and challenge maturity evidence to ensure accuracy and alignment with risk frameworks.
• Participate in project scoping to reach maturity targets.

Experience and skill requirements:

• Solid understanding of regulatory standards with the ability to translate them into effective internal policies and procedures.
• Strong grasp of IT and cybersecurity regulatory frameworks (e.g., ISO 27001, NIST), with experience in compliance implementation.
• Proven ability to perform operational controls, verify adherence to procedures, and support audit readiness.
• Good knowledge of cybersecurity risks, frameworks, and compliance requirements across enterprise environments.
• Skilled in assessing and providing risk-based opinions on new projects and activities, with a structured decision-making approach.
• Broad knowledge of IT domains, key processes, infrastructure, and enterprise solutions.
• Adept at bridging business and IT teams, translating business needs into actionable technical requirements.
• Experience applying ISO 27001 and NIST frameworks in a practical, operational context.
• Proficient in Microsoft Office, including Excel (with Macros) and PowerPoint.
• Fluent in English.

Nice to haves:

• Knowledge of French.
• Ability to collaborate / Teamwork.
• Communication skills – oral & written.
• Personal Impact / Ability to influence.
• Organisational skills.
• Ability to summarise.
• Adaptability.
• Ability to understand, explain and support change.
• Ability to challenge information.
• Ability to inspire others & generate people’s commitment.
• Ability to develop and leverage networks.

Thank you for considering a career with us!