ARCHIVED
This job listing has been archived and is no longer accepting applications.
MisuJob - AI Job Search Platform MisuJob
Login Sign Up

Information Security Coordinator for Governance, Risk and Compliance

DreesSommerSE

Málaga, AN, Spain Remote permanent

Posted: January 8, 2026

Interested in this position?

Create a free account to apply with AI-powered matching

Register to Apply

Quick Summary

We are seeking an Information Security Coordinator for Governance, Risk and Compliance in Málaga, Spain. The ideal candidate will be responsible for ensuring the security of our clients' data and implementing security measures to prevent cyber threats. The successful candidate will have a strong background in information security and a passion for innovation.

Required Skills

GRC Execution Audit Preparation Policy Implementation Risk Assessment BIM Management BIA Planning Gaps Compliance Monitoring Project Knowledge

Job Description

Creating a future worth living for future generations gets us out of bed every morning. Depending on the project, we are consultants, implementers, or both for sustainable, innovative and economical solutions for real estate, industry, energy and infrastructure. Our more than 6,500 employees at 70 locations worldwide support our customers in interdisciplinary teams. Our thinking is both visionary and realistic. We work independently and as part of a team. With passion and the latest technologies. We unite. Join us at Dreso and let’s create a world we want to live in.

The Information Security Coordinator for GRC is a seasoned professional with extensive expertise in Governance, Risk, and Compliance (GRC), bringing a deep understanding of global cybersecurity frameworks, regulations and best practices. With a strong track record in executing certification programs and embedding cybersecurity controls within large-scale and multinational environments, this expert role supports Drees & Sommer’s mission to ensure regulatory compliance, business continuity, and long-term information security maturity. Support yearly internal and external audit programme in alignment with the head of the department. Support the development, implementation and maintenance of the company’s BCM framework.

Core Responsibilities

• GRC Execution & Advisory: Support the development and maintenance of cybersecurity governance, risk, and compliance frameworks in alignment with ISO/IEC 27001, 27701, 22301, TISAX, NIS2 and other relevant standards.
• Audit Preparation & Support: Conduct and drive internal security assessments and support external audits by preparing documentation, identifying non-conformities, and ensuring implementation of corrective actions.
• Policy Implementation: Draft, maintain, and ensure the correct application of cybersecurity policies and procedures based on industry standards across business units.
• Risk & Control Assessment: Execute technical risk assessments and control effectiveness evaluations; support continuous improvement of risk treatment plans.
• BCM Program Coordination: Support the development, implementation, and maintenance of the company’s BCM framework.
• Business Impact Analysis (BIA): Assist in conducting and updating BIAs to assess the impact of potential disruptions.
• Continuity Planning: Help develop and maintain business continuity and disaster recovery plans. Ensure alignment of continuity plans with information security and risk management strategies.
• Compliance Monitoring: Ensure adherence to data protection regulations (e.g., GDPR), IT security laws, and internal security guidelines.
• Project Involvement: Act as a cybersecurity expert in cross-functional projects, ensuring that new initiatives are aligned with cybersecurity requirements.
• Documentation & Reporting: Maintain high-quality documentation for compliance purposes; support reporting to the cybersecurity steering committee or auditors.
• Security Tools & Processes: Support the use of GRC tools, risk dashboards, and internal control platforms.

• Deep knowledge of international cybersecurity standards and frameworks (ISO/IEC 27001, 27017, 27701, 22301, NIST, GDPR)
• Expertise in compliance program execution and audit readiness
• Practical experience with risk assessments and mitigation planning
• Proficiency in policy and process implementation
• Strong technical writing and documentation skills
• Awareness of operational security practices in IT and industrial environments
• Strong analytical thinking and attention to detail
• Fluent in English is a must (equivalent to C1)

Certifications & Qualifications

• Certified in ISO 27001/27701/22301 Implementer or Auditor
• ITIL Certified
• IPMO – International Project Management Officer

• A dynamic and collaborative environment where cybersecurity is a strategic priority 
• A team that values creativity, initiative, and continuous improvement 
• To ensure your work-life balance, we offer the option of mobile working 
• We promote your professional and personal development through individual training and further education at the Drees & Sommer Academy 
• We support your health with a bonus for sports enthusiasts. We offer the possibility of subscribing to a private health insurance policy 
• Employees benefit from tax advantages related to their commuting expenses for the office 
• Fiscal advantages for employees expenses in meal costs during the worktime. Employee referral program with attractive bonus scheme 
• Supporting career and family by receiving tax benefits for kindergarten expenses 

Why Apply Through MisuJob?

AI-Powered Job Matching: MisuJob uses advanced artificial intelligence to analyze your skills, experience, and career goals. Our matching algorithm compares your profile against thousands of job requirements to find positions where you have the highest chance of success. This saves you hours of manual job searching and ensures you only see relevant opportunities.

One-Click Applications: Once you create your profile, applying to jobs is effortless. Your resume and cover letter are automatically tailored to highlight the most relevant experience for each position. You can apply to multiple jobs in minutes, not hours.

Career Intelligence: Beyond job matching, MisuJob provides valuable career insights. See how your skills compare to market demands, identify skill gaps to address, and understand salary benchmarks for your experience level. Make data-driven decisions about your career path.

Frequently Asked Questions

How do I apply for this position?

Click the "Register to Apply" button above to create a free MisuJob account. Once registered, you can apply with one click and track your application status in your dashboard.

Is MisuJob free for job seekers?

Yes, MisuJob is completely free for job seekers. Create your profile, get matched with jobs, and apply without any cost. We help you find your dream job without any hidden fees.

How does AI matching work?

Our AI analyzes your resume, skills, and experience to understand your professional profile. It then compares this against job requirements using natural language processing to calculate a match percentage. Higher matches mean better fit for the role.

Can I apply to jobs in other countries?

Absolutely. MisuJob features jobs from companies worldwide, including remote positions. Filter by location or look for remote opportunities to find jobs that match your preferences.

Ready to Apply?

Join thousands of job seekers using MisuJob's AI to find and apply to their dream jobs automatically.

Create Free Account Sign In
← Browse all jobs
Register to Apply