DESCRIPTION

SYNTAX IT Group is seeking a dedicated and experienced GRC Security Consultant to strengthen our professional services team.

As we continue to expand our cybersecurity and compliance services, we are looking for a professional who can help organizations enhance their risk posture and build resilient governance frameworks.

In this position, you will be integral in advancing our clients’ Governance, Risk, and Compliance (GRC) frameworks, supporting high-level security initiatives, and ensuring alignment with industry standards and legislative requirements.

Responsibilities

  • Collaborating with stakeholders to assess and enhance the organization’s security posture and GRC activities.

  • Performing Government focused activities such as:
    – Acting as vCISO.
    – Establishing an ISMS framework or components of it, according to industry standards such as ISO27001.
    – Creating or reviewing information security documentation (such as Policies, Standards, Procedures etc.) to ensure coverage and effectiveness.
    – Performing Security Awareness Training.
    – Gathering information around existing security controls and assist in identifying KPIs.

  • Performing Risk Management focused activities, such as:
    – Reviewing or Implementing a Security Assessment Framework.
    – Conducting Assessment against a specific scope or across the whole organization.
    – Reviewing or Implementing a Third-Party Security Assessment Framework.
    – Conduct Third Party Risk Assessments remotely or on-site.

  • Performing Compliance focused activities, such as:
    Gap Analysis against: Industry Standards such as ISO27001, ISO22301, PCI DSS etc.; Legislations such as NIS2, DORA, GDPR; Provide a Roadmap towards compliance or certification.

  • Liaising with various teams to collect, analyze, and present information effectively.

Qualifications

  • B.Sc. degree in Information Security, Computer Science, or a related field, or equivalent experience.
  • M.Sc. degree will be considered a plus.
  • A minimum of 3 years of experience in security engineering and/or GRC roles, with hands-on experience across relevant domains.
  • Strong knowledge of security standards and frameworks (e.g., ISO 27001, NIST, GDPR compliance).
  • Relevant security certifications (e.g., CISM, CISSP) are highly regarded.

Additional Skills

  • Proficiency in both Greek and English, with effective communication and presentation abilities.
  • Strong analytical and problem-solving skills.
  • Ability to work collaboratively or independently as required.
  • Demonstrated ability to communicate effectively across all levels of the organization.

Ready to join us?

    Max File Size: 10 MB