GRC Cybersecurity Specialist (ISO 27001) Aviation, hibrido
Empresa
WAMOS AIR
Provincia
Madrid
Ciudad
Madrid
Tipo de Contrato
Tiempo Completo
Descripción
GRC Cybersecurity Specialist (ISO 27001) Aviation
We are looking for a GRC Cybersecurity Specialist to join Wamos Air in a highly regulated aviation environment.
The role will focus on the supervision and continuous improvement of the Information Security Management System (ISMS), ensuring compliance with international standards and supporting risk management activities across the organization.
Key responsibilities:
Support and maintenance of the ISMS (ISO 27001)
Review and validation of security policies and controls
Participation in internal and external audits
Risk identification, assessment and follow-up
Support in compliance with frameworks such as ENS and NIS2
Coordination with internal teams (IT, Legal, Operations)
Monitoring of third-party security and compliance
Requirements:
2 4 years of experience in cybersecurity GRC roles
Practical knowledge of ISO 27001 (implementation or maintenance)
Experience in risk management and compliance
Exposure to regulated environments (aviation, banking, etc.) is a plus
Good analytical and documentation skills
Education Certifications:
Degree in IT, Engineering or related field
Certifications such as ISO 27001, CISA, CISM or CRISC are a plus
Languages:
Spanish: fluent
English: professional level (mandatory)
¿Qué te ofrecemos?
Flexible working hours
Location: Madrid
1 day remote work per week
Intensive working hours on Fridays and during summer
Life insurance
Birthday day off
Wellbeing plan
Training and development plan
Financial support for childcare and birth
ciberseguridad, ISO 27001, GRC, Risk Management, Compliance, NIS2, ENS, ISMS,
We are looking for a GRC Cybersecurity Specialist to join Wamos Air in a highly regulated aviation environment.
The role will focus on the supervision and continuous improvement of the Information Security Management System (ISMS), ensuring compliance with international standards and supporting risk management activities across the organization.
Key responsibilities:
Support and maintenance of the ISMS (ISO 27001)
Review and validation of security policies and controls
Participation in internal and external audits
Risk identification, assessment and follow-up
Support in compliance with frameworks such as ENS and NIS2
Coordination with internal teams (IT, Legal, Operations)
Monitoring of third-party security and compliance
Requirements:
2 4 years of experience in cybersecurity GRC roles
Practical knowledge of ISO 27001 (implementation or maintenance)
Experience in risk management and compliance
Exposure to regulated environments (aviation, banking, etc.) is a plus
Good analytical and documentation skills
Education Certifications:
Degree in IT, Engineering or related field
Certifications such as ISO 27001, CISA, CISM or CRISC are a plus
Languages:
Spanish: fluent
English: professional level (mandatory)
¿Qué te ofrecemos?
Flexible working hours
Location: Madrid
1 day remote work per week
Intensive working hours on Fridays and during summer
Life insurance
Birthday day off
Wellbeing plan
Training and development plan
Financial support for childcare and birth
ciberseguridad, ISO 27001, GRC, Risk Management, Compliance, NIS2, ENS, ISMS,