Fourlis Group, one of the leading Groups of companies in Greece, Bulgaria, Cyprus, and Romania in providing quality consumer goods, is currently looking to recruit:

Cyber Security GRC Specialist 

The Position:

As part of the Governance, Risk & Compliance team of the Group’s Information Security Division, you will help establish and maintain a strong security governance environment, ensure that cyber risks are effectively managed, and support compliance with internal and external security requirements across all business units and subsidiaries. Your responsibilities include:

• Developing, maintaining, reviewing, and communicating information security policies, standards, and procedures
• Governing the Group’s Information Security Framework, coordinating control ownership, evidence collection, remediation tracking, and periodic reviews across all subsidiaries
• Supporting the execution of the information security risk management process, including risk assessments, tracking of treatment plans, and coordination with stakeholders
• Conducting security control assessments, identifying gaps, and supporting remediation follow‑up
• Contributing to security awareness initiatives and communicating key governance requirements to employees and relevant stakeholders
• Monitoring compliance with defined information security requirements and assisting in internal and external audit preparation activities
• Assisting with the evaluation of security requirements for suppliers and coordinating related third‑party security activities
• Collaborating with the IT PMO and Security by Design & Architecture team to ensure that security requirements are incorporated into projects and organizational changes
• Supporting information classification, labelling, and secure handling practices across the Group
• Contributing to governance activities related to business continuity and information security continuity planning
• Ensuring consistent and coordinated adoption of security practices across all Group companies
• Preparing reports, dashboards, and KPIs related to governance, risk, compliance, and security posture.

Qualifications:

• Bachelor’s Degree in Information Security, Computer Science, Engineering, Business/ Management Information Systems, or a related field
• 3–5 years of experience in Cyber Security Governance, Risk Management, Compliance, or similar security roles
• Good understanding of information security governance principles, risk assessment methodologies, compliance processes, and information handling requirements
• Solid knowledge of information security standards such as ISO 27001/27002 and related best practices
• Strong analytical and organizational skills, with the ability to assess risks and propose pragmatic solutions
• Excellent communication and interpersonal skills, with the ability to collaborate across multiple teams
• Strong teamwork and project management skills
• Good command of the English language
• Sound understanding of modern IT systems and cybersecurity concepts.

Qualifications considered an asset:

• Certifications such as CRISC, ISO 27001 Lead Implementer/Lead Auditor, ISC2 CC, or CISA
• Experience with supplier security assessments or third‑party risk processes
• Experience supporting internal or external audits
• Familiarity with business continuity governance or related practices.

We offer:

• Career and development prospects in one of the most successful commercial groups in the Balkans
• Extensive continuous training
• Competitive remuneration & benefits package.