Asiera – Security & Risk Adviser (Hybrid)About UsFormerly known as HEAnet and EduCampus, we have been supporting Ireland's academic and research community since 1983. We are now proud to come together as one unified organisation. Our new name Asiera captures what drives us every day – Advancing Services for Irish Education, Research and Academia.Every day, our national education and research network supports more than 1.3 million students and researchers and over 175,000 staff across Ireland's schools, ETBs and higher education institutions – more than 1.5 million people in total. In addition, we provide mission-critical management information systems to over 140,000 students and 20,000 staff across Ireland's universities, technological universities, institutes of technology and colleges.In Asiera, we are building an end-to-end digital ecosystem for Irish education, one that connects, enables, and empowers learners and institutions to thrive in an increasingly digital world.We are seeking an experienced Security and Risk Adviser to join our Cyber Risk & Compliance Consultancy Services team on a full-time permanent contract basis.What the Cyber Risk & Compliance Consultancy Services team does The Cyber Risk and Compliance team provides a set of core services that are common to our clients. These include, policy review and development, security and risk assessments. The team works closely with other security teams within Asiera and sits within the Security Consultancy Services Team.What the Security & Risk Adviser (Cyber Risk & Compliance) doesThe Security & Risk Adviser (Cyber Risk & Compliance)will play a key role in strengthening information security and cybersecurity across Asiera's clients and within the organisation. Your main responsibilities include:Policy & GovernanceLeading and supporting the creation and review of security policies.Ensuring policies align with client needs, organisational goals, and industry best practices.Leading and delivering policy review work and creating new security policies when needed.Compliance & ISO 27001Supporting information security and cybersecurity compliance work.Supporting internal audits and ensuring ongoing conformity and effectiveness.Maintaining and continually improving Security Consultancy Services' ISO 27001-certified ISMS.Helping clients achieve compliance with relevant directives and standards (e.g., EU NIS 2 Directive).Risk Management & AssessmentsLeading and delivering information security risk assessments engagements.Conducting security risk assessments based on recognised standards and frameworks.Providing clear, practical recommendations to address findings and improve security posture.Collaboration & Team ContributionHelping the team grow by sharing expertise, insights and best practices.Collaborating with internal teams and clients to improve security governance practices.How we do itOur company values underpin how we do things in Asiera. We believe in and live by our values and understand they are integral to making Asiera a great place to work.COLLABORATION - EQUALITY & FAIRNESS - FUTURE FOCUSED - POSITIVE IMPACTFor further information about who we are and our core values, see What you get from usWe promote a healthy work/life balance, and we take the care of our team members mental health seriously. Work outside of standard hours is rare and agreed in advance.We value knowledge sharing and communication. We have frequent team meetings combined with regular 1:1 catch-ups to make sure no one is hitting any roadblocks.We encourage critical thinking and the exploration of new ideas. We often form cross-team special interest groups for specific topic discussions, both ongoing and for fixed projects.Company Benefits Flexible Work/Life Balance frameworkFlexible start/finish timesHealth insurance for employeesDefined contribution pension schemeOn-going wellbeing initiativesEmployee Assistance Programme (EAP)Tax Saver Ticket schemeCycle to Work schemeProfessional education supportComprehensive group and individual training & development initiativesWhat we need from youEssentialBachelor's degree (or equivalent experience) in Information Security, Cybersecurity, Computer Science, Information Technology, or a related disciplineMinimum 2 years experience in Information Security consulting, Auditing, IT Compliance, or GRC roles involving Cybersecurity and regulatory requirementsHands-on experience in Information Security policy lifecycle management and conducting security risk assessments aligned with cybersecurity and regulatory requirementsGood understanding of recognised national and international security frameworks, including Irish Cybersecurity Baseline Standards, ISO 27001, NIST Cyber Security Framework and CIS ControlsStrong written & verbal communication skills with a collaborative and team-oriented approachWillingness to learn and adapt in a changing environmentInitiative-taking mindset with the ability to work independentlyAbility to explain technical concepts to both technical and non-technical audiencesBonus PointsWe do not expect you to have experience in the following, but if you did, it could be beneficial:Familiarity with collaboration tools (e.g. Microsoft 365).Familiarity with GRC platforms (e.g., ServiceNow GRC, RSA Archer, OneTrust).Ability to create clear and engaging slide decks for internal or client audiences.Experience delivering security or compliance presentations or awareness sessions.Professional certifications (e.g., CISA, CRISC, ISO 27001 Lead Auditor, or an equivalent).Working knowledge of key regulatory frameworks, including CyFun, NIS 2 Directive, EU AI Act.More Important InformationAt Asiera we celebrate diversity and understand how important it is to our ongoing success. We would like to hear from candidates who are great at what they do and whose values align with ours. If you need any adjustments made to the application or selection process so you can do your best, please let us know. Asiera are delighted to be awarded with the Ibec Keep Well Mark. We take pride in developing, maintaining, and enhancing our culture of wellbeing and continue to focus on this into 2026 and beyond.