Pb From Hays, /b we're collaborating with a bglobal leader in digital automation and AI‑powered operational transformation /b, operating across multiple countries and serving large enterprise customers. They specialise in bend‑to‑end digital process optimization /b, including complex, technology‑driven environments in which binformation governance, compliance, and risk management /b are mission‑critical. /ppbr/pp We're looking for an bIS Compliance Risk Management Consultant /b responsible for governing and continuously improving the company’s Information bSecurity compliance framework and IS risk management practices. /b /ppbr/ppYou will be part of a growing governance team responsible for ensuring bsecurity controls, risk mitigation activities, ISO 27001 NIS2 compliance, and audit readiness /b across several business units, acting as a bridge between high‑level governance requirements and practical implementation across IT functions. /ppbr/ppb Required Skills Experience /b /pullib6+ years /b of experience in bInformation Security, IT Audit, or IT Risk Management, /bwith focus on bgovernance, risk, and compliance. /b /liliStrong practical knowledge of bISO 27001 /b (implementation, management, or auditing). /liliStrong understanding of bNIS2 /b or comparable regulatory frameworks /liliAdvanced level of bEnglish (fluency). /b /liliExperience engaging with senior IT stakeholders and cross‑functional teams. /liliStrong analytical mindset, autonomy, and clear communication skills. /liliExperience in MA security assessments is a plus. /liliISO 27001 Lead Implementer/Auditor certification is highly valued. /liliCISM, CISSP, or comparable certification is highly valued. /li /ulpbr/ppb Key Responsibilities /b /pulliOwn and maintain the Group-wide bISMS framework aligned to ISO 27001 /b /liliDefine and maintain security policies, standards, and control requirements /liliEnsure applicability and rollout across all legal entities and portfolio companies /liliPrepare and coordinate binternal and external audits /b /liliMonitor regulatory requirements and translate them into bactionable controls /b /liliLeadb NIS2 compliance readiness /b and evidence structure /liliAct as central contact for auditors and regulatory inquiries /liliEnsure documentation and evidence structures are audit-ready /liliEstablish and operate the bGroup-wide IS risk management process /band maintain the central IS risk register /liliFacilitate risk assessments with business, IT, and portfolio companies /liliEnsure management visibility of key IS risks and mitigation status /liliIntegrate IS risks into enterprise risk management /liliDefine minimum bIS control baseline /b for all entities /liliConduct bIS compliance and risk reviews /bfor portfolio companies /liliSupport MA security assessments and post-merger governance integration /liliDefine and maintainb IS compliance and risk KPIs /b /liliProvide regular reporting to executive management /liliEnable risk-based decision making through structured reporting /liliSupport management and key roles in understanding their security responsibilities /liliProvide guidance on control implementation without owning operations /li /ulpbr/ppb What we offer /b /pullibFull-time /bopportunity with bPerm/Freelancer contract. /b /liliFlexibility to work b100% remotely or hybrid /b in one of the offices in Madrid, Barcelona, Córdoba or Coruña. /liliChance to work in a bhigh‑impact global technology environment /b, driving governance and security maturity. /liliExposure to advanced bautomation, AI‑driven processes, and highly scalable digital platforms /b. /li /ulpbr/pp If you are interested and want to contribute to a modern, innovation‑driven global organisation, bplease apply to this offer with your CV /b, so we can contact you for more information. /p