Fourlis Group, one of the leading Groups of companies in Greece, Bulgaria, Cyprus, and Romania in providing quality consumer goods, is currently looking to recruit:
Cyber Security GRC Specialist
The Position:
As part of the Governance, Risk & Compliance team of the Group’s Information Security Division, you will help establish and maintain a strong security governance environment, ensure that cyber risks are effectively managed, and support compliance with internal and external security requirements across all business units and subsidiaries. Your responsibilities include:
- Developing, maintaining, reviewing, and communicating information security policies, standards, and procedures
- Governing the Group’s Information Security Framework, coordinating control ownership, evidence collection, remediation tracking, and periodic reviews across all subsidiaries
- Supporting the execution of the information security risk management process, including risk assessments, tracking of treatment plans, and coordination with stakeholders
- Conducting security control assessments, identifying gaps, and supporting remediation follow‑up
- Contributing to security awareness initiatives and communicating key governance requirements to employees and relevant stakeholders
- Monitoring compliance with defined information security requirements and assisting in internal and external audit preparation activities
- Assisting with the evaluation of security requirements for suppliers and coordinating related third‑party security activities
- Collaborating with the IT PMO and Security by Design & Architecture team to ensure that security requirements are incorporated into projects and organizational changes
- Supporting information classification, labelling, and secure handling practices across the Group
- Contributing to governance activities related to business continuity and information security continuity planning
- Ensuring consistent and coordinated adoption of security practices across all Group companies
- Preparing reports, dashboards, and KPIs related to governance, risk, compliance, and security posture.
Qualifications:
- Bachelor’s Degree in Information Security, Computer Science, Engineering, Business/ Management Information Systems, or a related field
- 3–5 years of experience in Cyber Security Governance, Risk Management, Compliance, or similar security roles
- Good understanding of information security governance principles, risk assessment methodologies, compliance processes, and information handling requirements
- Solid knowledge of information security standards such as ISO 27001/27002 and related best practices
- Strong analytical and organizational skills, with the ability to assess risks and propose pragmatic solutions
- Excellent communication and interpersonal skills, with the ability to collaborate across multiple teams
- Strong teamwork and project management skills
- Good command of the English language
- Sound understanding of modern IT systems and cybersecurity concepts.
Qualifications considered an asset:
- Certifications such as CRISC, ISO 27001 Lead Implementer/Lead Auditor, ISC2 CC, or CISA
- Experience with supplier security assessments or third‑party risk processes
- Experience supporting internal or external audits
- Familiarity with business continuity governance or related practices.
We offer:
- Career and development prospects in one of the most successful commercial groups in the Balkans
- Extensive continuous training
- Competitive remuneration & benefits package.
