Title: Information Security & Compliance Specialist
Type: 12 month fixed term contract (with the view to permanency)
Location: Cork (onsite 3 days a week)
An opportunity has arisen for an experienced Information Security and Compliance professional to support a large organisation's governance, risk, compliance, and data protection functions during a significant technology transformation programme. The successful candidate will have experience in IT and cyber risk, data protection, or both, and will play a key role in ensuring new projects, systems, and third‑party relationships meet security and regulatory requirements.
THERE IS A VERY STRONG CHANCE OF THIS ROLE GOING PERM FOR THE RIGHT PERSON
Key Responsibilities:
Governance, Risk & Compliance:
Support security governance frameworks, policies, and standards.
Conduct risk, compliance, and third‑party assessments.
Assist with audits, remediation activities, and compliance reporting.
Maintain risk registers, control reviews, and governance processes.
Cyber Risk & Security:
Perform cyber risk assessments and control reviews.
Define security requirements for projects and technology initiatives.
Assess supplier and vendor security risks.
Support compliance with recognised standards and regulations (e.g. ISO 27001, NIST, GDPR, PCI DSS, NIS2).
Data Protection & Regulatory Compliance:
Support privacy compliance activities, including impact assessments and incident management.
Assist with regulatory engagement, audits, and evidence reviews.
Promote adherence to privacy and security obligations across the business.
Operational Support:
Contribute to supplier assurance, security awareness, and governance reporting.
Maintain policies, procedures, and compliance documentation.
Provide guidance to stakeholders on security and data protection matters.
Requirements:
Relevant qualification or certification in Information Security, Privacy, Risk, or Compliance (e.g. CISSP, CIPP, IAPP or equivalent). Experience in IT risk, cybersecurity, compliance, data protection, or related disciplines.
Knowledge of security frameworks and regulations such as GDPR, ISO 27001, NIS2, and AI governance requirements.
Strong stakeholder management, communication, analytical, and problem‑solving skills.
Ability to manage confidential information and work independently.
#J-18808-Ljbffr