Who are we?

We are a Top Employer organisation with more than 20,000 people whose presence is in multiple countries and who share a common objective: to build a sustainable, multimodal and connected mobility.

For 100 years we have mobilised people, we have put into motion the highest safety standards and excellence in everything that we do while caring for the environment and also the people who is part of the organisation.

Innovation, diversity, sustainability and searching for new ways to perform is what moves us.

We firmly believe that having a diverse and inclusive team is key to our success and to offer a quality service to our customers. If you want to join an organisation that values our differences, we are looking for you!

What would your day look like?

• Compliance Leadership: Define, implement and oversee the cybersecurity compliance strategy across all business units of the Mobico Group.

• Regulatory Assurance: Ensure ongoing compliance and adaptation to key regulations and directives, including but not limited to NIS2, ENS (Esquema Nacional de Seguridad), and best practices defined by NIST.

• Certification Management: Coordinate and lead audit processes for the certification and maintenance of ISO/IEC 27001, ensuring that the Information Security Management System (ISMS) meets international standards.

• Risk Assessment: Conduct periodic cyber risk assessments, identifying vulnerabilities and overseeing the implementation of effective mitigation controls.

• Policies and Procedures: Develop, review and update internal cybersecurity policies, standards and procedures, ensuring their communication and cross-organisational understanding.

• Reporting and Communication: Prepare executive reports on compliance status and cyber risk levels for senior management and international stakeholders.

What do we offer you?

• Contribute to a large-scale, high-impact project, directly influencing the group's cybersecurity and compliance strategy.

• Permanent contract.

• Schedule: from Monday to Thursday 8:30-9:30 to 17:30-18:30, with intensive working days on Fridays and during July and August.

• Work from home one day per week.

• Facilities with gym and weekly physiotherapy.

• Shuttle service to and from the office from various points in Madrid.

• Alsalud programme, our own health programme, and access to a wide network of gyms.

• Internal mobility opportunities after two years in the same role.

• Opportunity to participate in our voluntary programme.

• Work in an international and collaborative environment, with high visibility and interaction with senior stakeholders.

What do we need from you?

• University degree in Computer Science, Telecommunications Engineering or a related field.

• High level of English (C1/C2), with the ability to negotiate, produce technical documentation and deliver high-level presentations in an international context.

• Minimum 5 years of experience in Risk & Compliance, Cybersecurity or Audit roles.

• Proven experience with cybersecurity and compliance frameworks:

• ISO/IEC 27001 (ISMS implementation and certification processes).

• ENS (Esquema Nacional de Seguridad) - medium level.

• NIS2 Directive (readiness and compliance).

• NIST Cybersecurity Framework.

• Proactive and collaborative profile, eager to learn and contribute value to the team.

• Ability to work in a dynamic environment and assume responsibility.

• Good command of MS365 and Google Suite.

Our commitment to equal opportunities

In Alsa we promote diversity and equal opportunities. We are committed to creating an inclusive environment where each person, no matter their nationality, culture, gender, gender identity, age, sexual orientation, disability or any other personal condition, has the same opportunities that will allow them to develop their potential.

That is why our hiring decisions are based on your profile, knowledge, experience and talent, because we value your passion for contributing and improving the future of sustainable mobility. In addition, we guarantee a fair and accessible hiring process. If you have a disability or need any adaptation during the hiring process or incorporation, please let us know.

Continue your journey with us, want to hop in?

#asfarasyouwant #alsatalent