Work With Us

Job Overview

We are looking for a dynamic and experienced IT Risk Specialist Manager in our organization. In this role, you will help EIRENGINEER and its clients comply with robust security practices and align with industry standards like ISO 27001, ISO 22301, NIST CSF, and SOC 2. The ideal candidate will have a strong understanding of risk assessment methodologies, compliance frameworks and technical control measures. This role will act as a trusted advisor, promoting effective governance and risk management strategies.

Key Responsibilities

• Serve as a strategic advisor, bridging technical insights with business objectives to promote sustainable cybersecurity strategies.
• Conduct Risk Assessments to identify vulnerabilities within IT infrastructure, supply chain, and operational processes.
• Develop and implement Risk Treatment Plans, prioritizing remediation efforts to mitigate risks effectively.
• Provide expert guidance on supplier security and third-party risk management.
• Perform gap analysis to evaluate business security postures against ISO 27001, ISO 22301, SOC 2, and NIST CSF standards, and design actionable improvement recommendations.
• Assist in preparing documentation and controls required for audits, including policy refinement for ISMS or BCMS deliverables.
• Conduct internal audits, assessing organizational compliance with relevant standards, and address identified gaps.
• Guide businesses through external audit preparation, streamlining documentation and ensuring strategic alignment with standards.
• Support businesses in aligning with data protection regulations.
• Manage network and server security risks through the deployment of technical control measures.
• Develop and manage information security policies and other ISMS documents based on requirements.
• Collaborate with clients to create incident response plans, risk registers, and performance indicators for ongoing compliance.

Preferred Qualifications & Skills

• Bachelor’s degree in Engineering – Computer Science, Electrical Engineering or a cognate discipline.
• A combined experience of over 2 years in IT Security or IT Risk Management with a focus on ISO 27001/ISO 22301, NIST & SOC2, preferably in an IT Consulting or Big4 environment.
• Strong understanding of IT security and risk management compliance frameworks, including GDPR and data protection laws.
• Technically proficient in managing risks to IT systems, servers and networks.
• Familiarity with risk assessment tools, document creation and IT security audits.
• Candidates with relevant industry certifications such as CISA/CRISC, ISO 27001/22301 LI/LA, ITIL along with technical certifications such as CCNA will be given preference.

The ideal candidate is a proactive problem solver who is extra passionate about IT Security and Risk Management.

If this resonates with you and you feel your skills can help protect Irish businesses from cyber threats, we encourage you to apply!