Cyber Risk and Assurance Consultant

Salary: Competitive Salary & Benefits Location: Milan – Italy (Hybrid) About Integrity360 Integrity360 is the largest independent cyber security provider in Europe, with a growing international presence spanning the UK, Ireland, mainland Europe, Africa and the Caribbean. With over 700 employees, across 12 locations, and six Security Operations Centres (SOCs)—including locations in Dublin, Sofia, Stockholm, Madrid, Naples and Cape Town—we support more than 2,500 clients across a wide range of industries. Over 80% of our team are technical experts, focused on helping clients proactively identify, protect, detect and respond to threats in an ever-evolving cyber landscape. Our security‑first approach positions cyber resilience as a business enabler, empowering organisations to operate with confidence. At Integrity360, people come first. We invest heavily in learning, development and progression, fostering a dynamic culture where innovation, collaboration and continuous growth are at the heart of what we do. If you’re ready to take your cyber security career to the next level, we’d love to hear from you. Job Role & Responsibilities We are currently seeking a Cybersecurity Consultant to join the Cyber Risk and Assurance Team in the IT Risk, Compliance, and Security Consultancy space. The successful candidate will provide deep, pragmatic and relevant advice to our clients and will be responsible for supporting our clients in building and implementing cybersecurity programs that adhere to the highest standards of Governance, Risk, and Compliance. The ideal candidate has extensive knowledge and experience in the GRC domain. We cherish our talent, we nurture their skills, and we ensure they gain exposure to many sectors. We ensure that they enjoy many positive and productive challenges and plan a path that helps them achieve their career goals. Primary Duties/Responsibilities Work together with the local and wider international CRA team to deliver on projects and grow the CRA function in Italy. Work collaboratively with clients to assist in the design and implementation of Governance, Risk, and Compliance frameworks, utilizing a solid technical foundation to enhance security. Strategically advise on, and manage the various risks associated within the client environment to safeguard information security. Work with senior stakeholders where appropriate to embed security expertise in other functions. Lead security assessments, risk management, and gap analyses, leveraging technical expertise to identify risks, threats, and vulnerabilities. Support clients in identifying and implementing technical measures, mapping controls from various security standards or schemes to compliance requirements (e.g., ISO 27001, NIST, GDPR). Collaborate with client technical teams to ensure security solutions are integrated with business operations. Maintain up‑to‑date knowledge of security technologies, emerging threats, and regulatory changes. Assist our Sales team in developing proposals and respond to tenders and RFPs and to develop leads and define new opportunities. Travel (national and international) may be required as part of this role, and as such a clean driving license and access to a car are essential. Desired Skills A minimum of 3 years of experience in either Cybersecurity. Specific experience in Governance, Risk, and Compliance (GRC), including good knowledge of regulatory standards and security schemes such as ISO 27001, NIST, NIS2, DORA, ISO 22301. Experience working with C‑Level executives. Excellent written and spoken communications skills and ability to deliver strong presentations to technical audiences together with the compliance team. Previous experience working in the ICT field is preferred. Ability to work with cross‑functional teams to understand the business context and technology challenges, handle uncertainty and apply appropriate security solutions in response to multiple risks and needs. Ability to work with cross‑functional teams to see the big picture and have a keen eye for detail in different situations. Preferably holds Professional Certifications such as ISO 27001 Lead Auditor/Lead Implementer or equivalent. Good knowledge of the English language. Job Details Seniority level: Mid‑Senior level | Employment type: Full‑time | Job function: Consulting and Information Technology | Industries: Computer and Network Security and IT Services and IT Consulting. #J-18808-Ljbffr