CrawlJobs Logo

Information Security Integration and Governance Specialist

Spain, Getafe Area · Job Posted February 22, 2026
Apply Position
Job Link Share

Job Description

Within Airbus Defence and Space SAU, Corporate Security operates under a holistic approach, protecting our people, our industrial assets, our products and services and our information. Given the frame where we operate, the team is characterized by a culture of proactive risk management and rigorous regulatory compliance. Given the constant evolution of threats and regulatory frameworks, the role we seek to fill is essential for bridging the gap between corporate security requirements and the technical execution by the Digital team. We are looking for a professional with an integral vision to join our team as an Information Security Integration and Governance Specialist. This role is the strategic nexus between the corporation´s security guidelines and the technical implementation by Digital, ensuring that protection standards are effectively translated into the daily technological architecture and operations. This position is crucial for keeping our risk posture under control and ensuring strict adherence to local and international regulations, directly contributing to the organizatións resilience and compliance.

Job Responsibility

  • Strategic Interconnection: Act as the interface and point of contact between the Corporate Security area and the Digital area, translating security requirements into applicable technical solutions
  • Risk Management and Analysis: Lead the analysis, assessment, and treatment of security risks, identifying vulnerabilities and proposing countermeasures to mitigate the potential impact on company assets
  • Regulatory and Legal Compliance: Ensure strict knowledge and compliance with Spanish and international applicable regulations (eg ENS, CCN-STIC, NIS2, CRA, ISO 27001, NATO, EU, PART-IS, CMMI, NIST), as well as actively participating in accreditation processes and system certification
  • Audit and Accreditation: Coordinate security audits (internal and external) and manage the necessary documentation and evidence for system accreditation processes
  • National networks: provide technical expertise and support to the Spanish NISO (National Information Security Officer) in evaluating and defining the security conditions required to answer the demands for different areas regarding interconnections and geographical extensions of our national network
  • Security Project Management: lead or participate in the management of key projects aimed at implementing, updating, or reinforcing security controls and tools
  • Deviation Management: administer and document the security deviation management process, evaluating its associated risk and establishing mitigation plans
  • Support the Spanish NISO in the implementation of the company digital security strategy within the framework of the national laws and regulations and in the implementation of technical and organization measures to identify, resort and manage cyber security risks

Requirements

  • University degree in Computer Science, Engineering, Telecommunications, Information Systems, or a related field
  • Relevant industry certifications are highly valued (e.g. CISSP, CISM, CISA, ISO/IEC 27001 Lead Implementer/Auditor)
  • Deep understanding of risk analysis: proven experience leading and documenting comprehensive Information Security Risk Assessments (RAR) and defining effective mitigation strategies. Knowledge of MAGERIT and EBIOS methodologies and tools (Pilar / Fence)
  • Regulatory Compliance Mastery (ENS, CCN-STIC…)
  • Accreditation and Audit Management: extensive hands-on experience in managing security audits and supporting system accreditation/certification processes (eg. ISO 27001, ENS compliance)
  • Penetration Test Coordination: experience coordinating penetration testing (overseeing the scope, evaluating technical results, and tracking remediation plans)
  • Security Architecture/Controls: solid understanding of technical security controls across network, system, and application layers, and the ability to interface with IT/DevOps teams
  • Security Project Management: Demonstrated ability to manage and deliver security implementation projects on time and within budget, translating high-level policy into actionable tasks
  • Deviation Management: experience defining, managing, and tracking security exceptions or deviations, including risk acceptance and compensating control documentation
  • Stakeholder communication: excellent written and verbal communication skills to effectively bridge the gap between Corporate Security management and IT operation teams
  • Tools such as: Jira, Confluence, ITIL, Ebios

Nice to have

  • Policy Development: Experience drafting, implementing, and enforcing corporate information security policies, standards, and procedures
  • Fluency in Spanish and English: given the specific Spanish compliance requirements and the international nature of Cybersecurity, full professional proficiency in both Spanish and English is strongly preferred

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Similar Jobs for

Information Security Integration and Governance Specialist

8 matching positions

Senior Information Security Specialist

Founded in 2017, Paribu has been playing a key role in the development of Türkiy...
Location
Location
Turkey
Salary
Salary:
Not provided
paribu.com Logo
Paribu
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong knowledge of information security frameworks, including ISO 27001, NIST CSF, NIST 800-53, CIS Controls, PCI DSS, and SOC 2
  • Experience conducting information security audits and evaluating technical and operational controls
  • Solid understanding of IT General Controls (ITGC), including access management, change management, and IT operations
  • Knowledge of cloud security auditing across AWS, Azure, and GCP environments
  • Understanding of application security principles, including authentication, authorization, and secure development practices
  • Familiarity with network and infrastructure security concepts such as firewalls, segmentation, logging, and monitoring
  • Experience with risk assessment methodologies, control testing, audit sampling, and evidence evaluation
  • Working knowledge of security technologies including SIEM, IAM, EDR, DLP, and vulnerability management solutions
  • Understanding of regulatory and compliance requirements, including GDPR and other applicable security regulations
  • Excellent analytical thinking and structured problem-solving skills
Job Responsibility
Job Responsibility
  • Providing independent, risk-based assurance over the organization's information security controls, governance processes, and compliance posture
  • Leading technical and process-level security audits across infrastructure, applications, cloud environments, and third-party services
  • Evaluating whether security controls are appropriately designed, implemented, and operating effectively
  • Identifying control gaps and security risks, providing practical, risk-based recommendations to strengthen the control environment
  • Validating remediation efforts and verifying the effectiveness of corrective actions
  • Supporting regulatory, certification, and internal audit requirements by ensuring compliance with applicable security standards and frameworks
  • Delivering clear, evidence-based audit reports that enable leadership to make informed risk decisions
  • Contributing to the continuous improvement of the organization's security governance, audit methodology, and overall control maturity
What we offer
What we offer
  • Meal allowance
  • Private health insurance
  • Commuting support
  • S.O.S. leave (10 days)
  • Birthday leave
  • Language learning support
  • Personal development support
  • Well-being & health platform
  • Relocation allowance
  • Top-tier work equipment
  • Fulltime
Read More
Arrow Right

Specialist Information Security

SIG is a leading provider of packaging systems and solutions for better. We work...
Location
Location
Switzerland , Neuhausen
Salary
Salary:
Not provided
sig.biz Logo
SIG Group
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s or Master’s degree in Computer Science, Information Technology, Cybersecurity, or a related field
  • 3+ years of hands-on experience in the Information Security or IT governance domain
  • Foundational understanding of ISO 27001, ISO 42001, AI governance frameworks, and emerging regulatory requirements (e.g., EU AI Act, NIS2, GDPR)
  • Knowledge of ISMS (ISO 27001) requirements, control frameworks, and audit processes
  • Knowledge of AIMS (Artificial Intelligence Management System) concepts such as AI lifecycle governance, data classification, AI risk assessment, and responsible AI principles
  • Familiarity with legal and regulatory requirements, including GDPR, EU AI Act, NIS2, and other security or AI‑related compliance standards
  • Knowledge of risk management methods, including risk identification, assessment, and mitigation techniques
  • Awareness of the operational impacts and business risks caused by cybersecurity or AI‑related incidents
  • Understanding of how ISMS and AIMS controls integrate with IT and business processes, including policy management, governance workflows, and audit readiness
  • Experience supporting compliance initiatives or regulatory readiness activities (e.g., audit preparation, evidence collection, control documentation)
Job Responsibility
Job Responsibility
  • Support the Information Security & Risk Manager in developing, maintaining, and operating both the AIMS and ISMS , including AI governance implementation by ISO/IEC 42001, and ISO/IEC 27001 continuous improvement activities
  • Coordinate internal and external audits by preparing, maintaining, and reviewing ISMS- and AIMS‑related controls, evidence, and remediation actions
  • Perform initial security and AI risk /impact assessments and contribute to enhancing SIG’s IT Risk Management processes within the Risk Management Portal
  • Conduct supplier security assessments and support the procurement process for supplier qualification, including AI‑related vendor and tool risk evaluations
  • Perform initial security assessments for critical IT and AI‑related projects, providing security requirements, risk mitigation guidance, and alignment with SIG’s ISMS and AIMS controls
  • Evaluate AI use cases, integrations, and tools under AIMS and ensure regulatory compliance, including alignment with the EU AI Act, NIS2, data protection requirements, and other applicable security and AI‑related regulations. This includes conducting AI impact assessments, verifying data classification, and ensuring responsible and secure AI usage
  • Support SIG’s Security Governance Framework by maintaining policies, procedures, and technical standards across ISMS and AIMS, ensuring documentation is up-to-date, aligned with global governance requirements, and consistently implemented across regions
What we offer
What we offer
  • Competitive compensation
  • Opportunity to partially work from home
  • Part of a globally successful international company
  • Personal development opportunities
  • Trainings and coaching opportunities from senior team members
  • Fulltime
Read More
Arrow Right

Security Governance Specialist

The Security Governance Specialist is a critical member of the Information Secur...
Location
Location
Spain , Barcelona
Salary
Salary:
Not provided
docplanner.com Logo
DocPlanner GmbH
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • ISO 27001 Lead Auditor or Implementer certification is highly desirable (but not essential)
  • Experience leading or taking part in internal and or external audits
  • 5+ years of experience in information security governance
  • Knowledge of relevant security standards and frameworks (e.g., ISO 27001, NIST, SOC 2)
  • Experience of continuous compliance tooling (eg Vanta or Drata)
  • Strong understanding of regulatory requirements, such as GDPR
  • Excellent communication and collaboration skills, with the ability to work across various departments
  • Strong analytical and problem-solving skills
  • Detail-oriented with a commitment to maintaining accuracy in documentation
  • Ability to adapt to a dynamic and fast-paced environment
Job Responsibility
Job Responsibility
  • Develop and maintain information security policies, procedures, and standards in alignment with industry best practices, regulatory requirements, and organizational goals
  • Collaborate with stakeholders across the organization to ensure policies meet business needs while maintaining security standards
  • Establish and manage the security governance framework, ensuring consistency and accountability in security practices
  • Define and communicate governance-related roles and responsibilities within the organization
  • Assist in identifying and understanding regulatory requirements and standards relevant to the organization (e.g., SOC 2, ISO 27001)
  • Ensure that security practices and policies align with compliance requirements and facilitate compliance assessments and audits
  • Contribute to the development of security awareness programs and training materials
  • Collaborate with the Security Awareness and Training Specialist to educate employees about security policies and best practices
  • Maintain a repository of security policies, procedures, and standards
  • Prepare and distribute reports on compliance status, governance efforts, and security metrics to management
What we offer
What we offer
  • True flexibility and work-life balance
  • Remote or hybrid work model with our hub in Barcelona
  • Flexible working hours
  • Summer intensive schedule during July and August (work 7 hours, finish earlier)
  • 23 paid holidays, with exchangeable local bank holidays
  • Additional paid holiday on your birthday or work anniversary (you choose what you want to celebrate)
  • Private healthcare plan with Adeslas for you and subsidized for your family (medical and dental)
  • Access to hundreds of gyms for a symbolic fee in partnership for you and your family
  • Access to iFeel, a technological platform for mental wellness offering online psychological support and counseling
  • Free English and Spanish classes
  • Fulltime
Read More
Arrow Right

Security Governance Specialist

The Security Governance Specialist is a critical member of the Information Secur...
Location
Location
Poland , Warsaw
Salary
Salary:
Not provided
docplanner.com Logo
DocPlanner GmbH
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • ISO 27001 Lead Auditor or Implementer certification is highly desirable (but not essential)
  • Experience leading or taking part in internal and or external audits
  • 5+ years of experience in information security governance
  • Knowledge of relevant security standards and frameworks (e.g., ISO 27001, NIST, SOC 2)
  • Experience of continuous compliance tooling (eg Vanta or Drata)
  • Strong understanding of regulatory requirements, such as GDPR
  • Excellent communication and collaboration skills, with the ability to work across various departments
  • Strong analytical and problem-solving skills
  • Detail-oriented with a commitment to maintaining accuracy in documentation
  • Ability to adapt to a dynamic and fast-paced environment
Job Responsibility
Job Responsibility
  • Develop and maintain information security policies, procedures, and standards in alignment with industry best practices, regulatory requirements, and organizational goals
  • Collaborate with stakeholders across the organization to ensure policies meet business needs while maintaining security standards
  • Establish and manage the security governance framework, ensuring consistency and accountability in security practices
  • Define and communicate governance-related roles and responsibilities within the organization
  • Assist in identifying and understanding regulatory requirements and standards relevant to the organization (e.g., SOC 2, ISO 27001)
  • Ensure that security practices and policies align with compliance requirements and facilitate compliance assessments and audits
  • Contribute to the development of security awareness programs and training materials
  • Collaborate with the Security Awareness and Training Specialist to educate employees about security policies and best practices
  • Maintain a repository of security policies, procedures, and standards
  • Prepare and distribute reports on compliance status, governance efforts, and security metrics to management
What we offer
What we offer
  • True flexibility and work-life balance
  • Remote or hybrid work model with our hub in Warsaw
  • Flexible working hours (fully flexible, as in most cases you only have to be on a couple of meetings weekly)
  • 20/26 days of paid time off (depending on your contract)
  • Additional paid holiday on your birthday or work anniversary (you choose what you want to celebrate)
  • Private healthcare plan with Signal Iduna for you and subsidized for your family
  • Multisport card co-financing for you to have access to sports facilities across Poland
  • Access to iFeel, a technological platform for mental wellness offering online psychological support and counseling
  • Free English and Spanish classes
  • Fulltime
Read More
Arrow Right

Data Governance Specialist - Data Security

Elevate Your Career as a Data Governance Specialist - Data Security. Join our dy...
Location
Location
Netherlands , Rotterdam
Salary
Salary:
Not provided
airswift.com Logo
Airswift Sweden
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Computer Science, Information Technology, or related field
  • 5+ years in data governance, data management, or related functions
  • At least 2 years in leadership or managerial roles
  • Proven experience designing and implementing data governance frameworks
  • Hands-on experience with data infrastructures, cloud environments, and data integration
  • Working knowledge of data governance tools (e.g. Collibra, Informatica, or equivalent)
  • Strong understanding of data privacy regulations (e.g. GDPR, CCPA)
  • Demonstrated communication skills for translating technical concepts to non?technical audiences
Job Responsibility
Job Responsibility
  • Develop, implement, and maintain data governance and data security frameworks across the organization
  • Establish and enforce policies, standards, and best practices for data quality, integrity, compliance, and protection
  • Collaborate with cross?functional teams, including Cybersecurity, Legal, Compliance, and business units, to ensure secure data handling and alignment with regulatory requirements
  • Lead enterprise-wide governance initiatives, data security assessments, and incident response efforts
  • Promote a culture of data stewardship and awareness through training, communication, and ongoing stakeholder engagement
  • Support continuous improvement of data governance operations, tools, and processes
  • Fulltime
Read More
Arrow Right

Senior Associate Security Technical Services Systems Integration Specialist

The Senior Associate Collaboration Technical Services (TS) Systems Integration S...
Location
Location
Singapore , Singapore
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Developing fundamental project and administration ability
  • Developing understanding and appreciation of technical design principles and compute layers
  • Ability to develop an understanding of fundamental project and administration processes
  • Display a strong learning orientation
  • Good verbal communication skills
  • Demonstrate a client service orientation
  • Hands-on proactive in approach
  • Knowledge on security concepts and application of those concepts
  • Ability in configuring/managing security controls, such as SIEM, Firewall, IDS/IPS, EDR, NDR, UTM, Proxy, SOAR, Honeypots, decoys, and other security tools
  • Developing knowledge on log collection mechanism such as Syslog, Log file, DB API
Job Responsibility
Job Responsibility
  • Owns larger portions of an installation, break/fix incidents at a low to medium level of complexity during project lifecycle
  • Takes responsibility for problem resolution and troubleshooting during project lifecycle
  • Escalates complex problems to the relevant third parties
  • Assists with the documentation of standard operating procedures relating to installations and fixes during ops handover
  • Compiles and maintains project administration (Time Capture and feedback to stakeholders)
  • Conducts elementary presentations within the customer's organization
  • Expected to take leadership from senior resources on relevant technologies according to specialization and best practice
  • Performs any other related task as required
  • Fulltime
Read More
Arrow Right

Technical Services Cross Technology Systems Integration Specialist

The Technical Services Cross Technology Systems Integration Specialist role invo...
Location
Location
Singapore , Singapore
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree or equivalent in Information Technology or Computing or a related field
  • Valid CCNP Voice/Collaboration Certification required
  • NICE plus additional such as NICE Engage NCSE
  • NICE Engage NCIE (Installation)
  • Sentinel Fundamentals
  • CXOne Basic Certification
  • CXOne Advanced Certification
  • CXOne ACD Administrator Certification
  • Additional certifications such as Nexidia Data exchange framework
  • Nexidia NCSE
Job Responsibility
Job Responsibility
  • Interacts with clients on site and remote to meet complex requirements of a solution
  • Escalates unresolved problems and issues to the relevant third parties
  • Responds to escalated client requests
  • Escalates complex problems to the relevant third parties
  • Writes reports and proposals and completes and maintains project documentation
  • Assists with the documentation of standard operating procedures relating to installations and fixes
  • Acts as coach and mentor to more junior Implementation Engineers and Technicians
  • Assumes responsibility for the coordination of the activities of the junior Engineers, in line with performance targets
  • Included in higher complexity design work, with input to the design expected
  • Expected to take ownership of relevant technologies according to domain or specialization
  • Fulltime
Read More
Arrow Right

Ts Cross Technology Systems Integration Specialist

The Collaboration Technical Services (TS) Systems Integration Specialist is a se...
Location
Location
India , Bangalore
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Seasoned understanding and appreciation of technical design and business principles
  • Seasoned project fundamental and administration ability
  • Seasoned project skills which are demonstrated in the execution of installations and other assignments
  • Excellent customer engagement skills
  • Demonstrate relevant domain specialist knowledge
  • Excellent verbal communication skills
  • Client focused and displays a proactive approach to solving problems
  • Ability to work under pressure
  • Ability to coach, mentor and provide guidance to team members
  • Bachelor's degree or equivalent in Information Technology or Computing or a related field
Job Responsibility
Job Responsibility
  • Interacts with clients on site and remote to meet complex requirements of a solution
  • Escalates unresolved problems and issues to the relevant third parties
  • Responds to escalated client requests
  • Escalates complex problems to the relevant third parties
  • Writes reports and proposals and completes and maintains project documentation
  • Assists with the documentation of standard operating procedures relating to installations and fixes
  • Acts as coach and mentor to more junior Implementation Engineers and Technicians
  • Assumes responsibility for the coordination of the activities of the junior Engineers, in line with performance targets
  • Included in higher complexity design work, with input to the design expected
  • Expected to take ownership of relevant technologies according to domain or specialization
  • Fulltime
Read More
Arrow Right