GRC Specialist

Are you a GRC Specialist expert in Governance, Risk & Compliance (GRC) ?

We are Reply , and we are looking for you!

WHO WE ARE

Reply is a company that specialises in Consulting, Systems Integration and Digital Services with a focus on the conception, design and implementation of solutions based on the new communication channels and digital media. Reply partners with key industrial groups in defining and developing business models made possible by the new technological and communication paradigms such as Artificial Intelligence, Big Data, Cloud Computing, Digital Communication, the Internet of Things and Mobile and Social Networking.

WHAT WILL YOU DO?

• Core activities . You will contribute to Cyber Security GRC projects, supporting governance, risk assessment and compliance initiatives across different industries. You will perform gap analysis, collect evidence, support audits and define remediation actions. You will also contribute to the development of policies, procedures and structured deliverables for both technical and business stakeholders.
• Technologies. You will work with cyber security frameworks and standards such as ISO/IEC 27001, NIST CSF, COBIT and CIS Controls, along with regulatory requirements including GDPR, NIS2 and DORA. Tools for risk assessment, compliance tracking and documentation management are also part of your daily activities.
• Team work . You will work in a consulting environment, collaborating with multidisciplinary teams and interacting with both technical and business stakeholders. You will be involved in workshops, interviews and client-facing activities, contributing to project delivery in structured and dynamic contexts.

WE'LL TOTALLY LOVE YOU IF YOU HAVE…

• Academic background . Bachelor or Master's degree in Computer Science, Engineering, Information Security or related fields, with an interest in cyber security, risk and compliance topics.
• Valuable expertise 2–5 years of experience in Cyber Security GRC. Solid understanding of information security principles and risk management. Hands-on experience with risk assessments, compliance assessments and audit support. Familiarity with security frameworks (ISO 27001, NIST, COBIT, CIS) and regulatory requirements (GDPR, NIS2, DORA). Ability to produce structured documentation and interact with different stakeholders.
• Nice to have . Experience in areas such as third-party risk, access governance, business continuity, incident management or vulnerability management. Participation in regulatory compliance or security framework implementation projects. Familiarity with Italian regulatory requirements and ACN-related topics (e.g. national cyber security framework, NIS2 alignment). Relevant certifications (e.g. ISO 27001, CISA, CRISC, CISSP, CISM).
• Soft skills . Analytical thinking, problem solving and attention to detail. Strong communication and stakeholder management skills. Consulting mindset, autonomy and ability to work across multiple projects. Curiosity and willingness to continuously learn and stay updated on regulatory and security topics.

YOU WILL LOVE WORKING WITH US BECAUSE…

• We have a start-up heart . Hundreds of small units with their own projects and teams. Guaranteed hands-on experience, flexibility, table footballs and free coffee.
• But we dream worldwide . We have the structure to make your ideas matter. We partner with major groups over 4 continents and 15 countries.
• We are customers-obsessed . Excellence is in our DNA. We strive for the best. We get our hands dirty. We get results.
• We are learning . We at Reply are always aiming for true innovation. Even though it still may look unreal.

WHAT ARE THE NEXT STEPS

The first step of our recruiting process will be the meetings with the technical referents and then a face to face interview with the HR team. We care about an equal recruiting process.

Feel interested?

Reply is committed to embracing diversity and creating an inclusive work environment by valuing the uniqueness of people regardless of age, gender, sexual orientation, religion, nationality, or disabilities as protected by Italian Law (L.68/99).

Furthermore, Reply is committed to ensuring a fair and accessible selection process: to help you during the recruitment process, please let us know of any kind of support you may need.