In collaboration with the team, you will be responsible for maintaining and evolving the corporate Information Security Management System (ISMS). You will also contribute to all the processes required to ensure and enhance information protection, resilience, and compliance with established requirements. Your responsibilities will include:
Activities related to regulations, standards, and frameworks applicable in the countries where GMV operates (ISO/IEC 27001, ENS, NIS2, etc.), including both internal and external audits.Defining and monitoring metrics, indicators (KPIs/KRIs), and management dashboards.Analyzing, assessing, and managing internal and third-party risks, while promoting initiatives to prevent and mitigate them.Developing and reviewing security and compliance policies, methodologies, and documentation.
Supporting the preparation of security committees, management reviews, and ISMS governance activities.