Cybersecurity Specialist at EDP Energias de Portugal S.A.
Porto, , Portugal -
Full Time


Start Date

Immediate

Expiry Date

12 Sep, 26

Salary

0.0

Posted On

14 Jun, 26

Experience

5 year(s) or above

Remote Job

Yes

Telecommute

Yes

Sponsor Visa

No

Skills

Information Security Management Systems, Business Continuity Management Systems, ISO 27001, ISO 22301, Cybersecurity Risk Management, Compliance Auditing, Incident Management, Regulatory Analysis, Policy Definition, Stakeholder Management, English Fluency, Problem Solving, Critical Thinking, Decision Making, Technical Communication, Risk Analysis

Industry

Utilities

Description
Our company is part of EDP, a global energy group present in around 30 markets with a particular emphasis on renewable energies. With more than 45 years of experience, we have been consolidating a relevant presence on the world energy scene based on the commitment to be all-green by 2030, leading the energy transition. With more than 13,000 employees around the world, we are committed to using our energy and heart to drive a better tomorrow.   The EDP Group is an integrated energy utility, with operations around the world. Within its electricity transmission and distribution activity (the EDP Networks Platform) it currently manages operations in Portugal, Spain, and Brazil    Cyber Resilience department is looking for a Cybersecurity Specialist.   What you will do: Monitor legal, regulatory and normative developments applicable to E-REDES, namely NIS2/SRI2, the European Cybersecurity Network Code, the Cyber Resilience Act, the Cybersecurity Act and ISO/IEC 27001, assessing impacts and internal adaptation needs. Contribute to the management, operation and continuous improvement of the Information Security Management System, ensuring alignment with applicable legal, regulatory and normative requirements. Support the ongoing management of cybersecurity risk, including the identification, assessment, treatment, monitoring and reporting of relevant risks for the organisation. Collaborate in the definition, implementation, review and continuous improvement of cybersecurity policies, standards and procedures, ensuring alignment with EDP Group guidelines, market best practices and applicable legal, regulatory and normative requirements. Follow up on internal, external and certification audits, as well as other compliance assessments, supporting the definition, implementation and monitoring of the respective action plans.   Employment type: Full-Time Work site: Onsite  Workplace: Lisboa e Porto     What are we looking for: University degree in Computer Engineering, Information Systems Management, Cybersecurity or similar fields; Solid experience in Information Security Management Systems (ISMS/SGSI) and Business Continuity Management Systems (BCMS/SGCN); Minimum of 5 years’ professional experience in relevant roles in cybersecurity, risk management or information security management systems; In-depth knowledge of ISO 27001 and ISO 22301 standards; Experience in audits, risk analysis and incident management; Ability to communicate with technical teams, management committees and regulatory authorities; Fluent command of English, both spoken and written; Dynamic and proactive profile, with strong initiative and a problem-solving mindset; Strong sense of responsibility, accuracy and attention to detail; Critical thinking, proactivity and decision-making ability in complex and regulated environments. Dynamic and proactive profile, with strong initiative and results orientation; Good teamwork and interpersonal skills; Knowledge of the European regulatory framework applicable to the energy and critical infrastructure sectors; Experience liaising with internal and external stakeholders in regulated environments; Relevant cybersecurity certifications, such as ISO 27001 Lead Implementer/Auditor, CISM or CISSP; Availability for occasional travel within Portugal and across Europe.   More than academic knowledge and technical skills, we are looking for ambitious people who are enthusiastic about the future and who bring human skills aligned with our purpose.   Equal opportunities for all Our vision is that each person combines their unique characteristics and experiences to fulfill our mission of creating new energy for the planet. We are an inclusive employer, ensuring all candidates are treated fairly throughout the recruitment process. We welcome and value all people, and we are committed to fostering a sense of belonging for each person who is part of the EDP group.   Need more reasons to apply? As a top employer we: Empower our employees through a positive and innovative work environment that promotes collaboration and agile decision-making; Respect and value each person, providing a flexible, healthy, and inclusive workplace with a range of attractive benefits; Provide a meaningful work experience and prepare our people for future challenges through different opportunities for development and internal mobility;   Our efforts have resulted in several distinctions over time, highlighting the EDP group's strong positioning and its dedication and commitment to attracting and retaining the best talent: Top employer certification by Top Employers Institute Part of the Bloomberg Gender-Equality Index Global certification as a family-responsible company by Fundación Másfamília Top 100 Workplaces by Houston Chronicle   Discover our tips to enhance your performance during the recruitment process and apply until June 24,2026 if you think you are the right fit for this opportunity.
Responsibilities
Monitor legal and regulatory cybersecurity developments to ensure organizational adaptation and alignment with standards like NIS2 and ISO 27001. Manage the Information Security Management System and cybersecurity risks while collaborating on the implementation of security policies and procedures.
Loading...