Job ID
R27661
Country
Portugal
Job City
Porto
Job Family
Risk management
Job Type
Employee
Job Sub Type
Permanent

Join Euronext as an IT and Cybersecurity Risk Manager

Are you ready to shape the future of capital markets? We are looking for an IT and Cybersecurity Risk Manager to join the Risk & Compliance team. The position will be based in Porto, and you will report to the Head of Group resilience, Operational and Technology risk.

You will primarily be responsible for:

  • Supporting the strengthening of the Group’s ICT risk management framework and Digital Operational Resilience Strategy across all Euronext entities
  • Contributing to the development of local ICT and operational risk profiles and supporting transversal, Group-level risk analyses
  • Reviewing and challenging Third Party Provider Risk Assessments performed by Procurement, Compliance, InfoSec and Data Privacy teams
  • Overseeing the Third Party Provider process, including exit strategy review and test, onsite audit, Register Of Information maintenance, identifying contractual or regulatory gaps and ongoing monitoring of Service Level Agreements
  • Contributing to the review and ongoing maintenance of the Third Party Provider Risk Management Framework
  • Collaborating with internal stakeholders to identify, assess and monitor ICT risks (cybersecurity, data, IT, third-party providers and Business Continuity), ensuring alignment with company policies and regulatory frameworks (e.g. DORA, ISO 27001)
  • Assisting in conducting ICT asset risk assessments, including evaluation of criticality, exposure and dependency risks
  • Supporting the creation and maintenance of ICT risk registers and dashboards, ensuring accurate documentation and reporting
  • Contributing to the development and enhancement of ICT risk mitigation strategies and action plans
  • Participating in change management and project management risk oversight
  • Supporting the review and enhancement of ICT risk management processes, methodologies, templates and tools, including internal procedures
  • Contributing to the preparation of internal reports, dashboards and presentations for management and governance forums
  • Assisting with the tracking of action plans and improvement initiatives and supporting the sharing of best practices across the risk management community
  • Supporting the development of ICT risk awareness programmes and training initiatives
  • Supporting the preparation of regular monitoring and analysis of the external risk environment, including emerging ICT and operational risks
  • Contributing to the identification of risk scenarios and potential impacts related to cyber threats, AI evolution, geopolitical developments and other emerging risk drivers
  • Coordinating inputs with the Cyber Threat Intelligence team and consolidating insights from internal and external working groups

Your profile:

  • Minimum three years of higher education in IT, cybersecurity or risk management, or equivalent experience
  • Entry-level knowledge of IT systems, cybersecurity concepts and risk management frameworks
  • Familiarity with standards and best practices such as ISO 27001, NIST and CIS
  • Understanding of financial regulation (e.g. MiFID, DORA, NIS 2) is a plus
  • Fluent in English (daily use)
  • Strong analytical and problem-solving skills
  • Autonomy, proactivity and ability to summarise complex information
  • Excellent communication skills, both written and verbal
  • Interest in digital risk

The Risk & Compliance department, a team of almost 60 talented professionals in Risk, Business Continuity Management, Internal Control and Compliance, spread across our various geographies, ensures the value and reputation of the company. Identifying and assessing risks, implementing mitigation actions, ensuring a sound system of controls, maintaining awareness and a robust risk and compliance culture across the organisation, monitoring and ensuring compliance with the applicable regulations are the core activities embedded in our team. The teams, as well as all its key stakeholders including local Boards and Regulators, are located in all Euronext entities (Paris, Porto, Milan, Oslo, New York, Dublin, Copenhagen).

Apply by submitting a CV in English.

Join a company where market infrastructure is built on innovation and where every innovation starts with a bold mind asking, “What’s next?”. At Euronext, we believe change is a starting point, not an obstacle. We look for people who see growth opportunities, think long term and want to help shape capital markets for future generations. Working with us means:

  • Being part of a European, international and diverse team – Collaborate across borders with talented colleagues connected by a shared ambition and purpose.
  • Learning as you grow – Develop your skills through continuous learning, real responsibilities and flexible career paths that evolve with you.
  • Having an impact – Contribute to projects that matter, in an agile and dynamic environment where your ideas help drive progress.
  • Driving sustainability – Play an active role in building transparent, responsible and sustainable capital markets for the long term. Together, we do not just support markets - we help shape their future.

Find out more about us at: Euronext.com