Global IT GRC Director

Apply

Job Information

Number
WEBWW-2025-000058
Job function
IT
Job type
Full-time
Location
Barcelona
Country
Spain

About the Position

Introduction

Werfen is a growing, family-owned, innovative company founded in 1966 in Barcelona, Spain. We are a worldwide leader in specialized diagnostics in the areas of Hemostasis, Acute Care Diagnostics, Transfusion, Autoimmunity, and Transplant. Through our Original Equipment Manufacturing (OEM) business line, we research, develop, and manufacture customized assays and biomaterials. We operate directly in 30 countries, and in more than 100 territories through distributors. Our Headquarters and Technology Centers are located in the US and Europe, and our workforce is more than 7,000 strong.

Overview

This position plays a critical role in the organization’s cybersecurity and GRC leadership team, working closely with the CISO to develop and implement effective security governance, risk management, and compliance strategies. This role oversees a team of GRC professionals and ensures alignment with industry standards such as NIST and ISO 27001. The role is also responsible for driving data protection initiatives and fostering a strong cybersecurity culture across the organization.

 

Responsibilities

Key Accountabilities

  • Cybersecurity GRC Strategy
    • Collaborate with CISO to develop and execute the cybersecurity GRC strategy, aligning it with business goals and objectives.
  • Team Leadership
    • Mentor a team of GRC professionals, fostering a culture of continuous improvement.
  • Risk Management
    • Identify and assess cybersecurity risks and threats to develop and implement risk mitigation strategies.
  • Policy and compliance
    • Develop and maintain cybersecurity policies, standards, and procedures, ensuring compliance with relevant laws, regulations, and industry standards.
  • Cybersecurity Culture
    • Promote cybersecurity awareness and best practices throughout the organization, conducting employee training and awareness programs.
  • Security Assessments
    • Conduct regular security assessments to identify weaknesses in the organization’s systems and processes.
  • Data Protection
    • Develop and implement data protection policies and procedures to ensure confidentiality, integrity, and availability of sensitive information.

 

Qualifications

Minimum Knowledge & Experience required for the position:

  • Degree in the field of computer science or engineering or demonstrable experience in the field of Information Security.
  • Professional certifications such as Cybersecurity Master’s degree, CISSP, CISM, or CISA highly desirable.
  • A minimum of 10 years of experience in cybersecurity, with at least 5 years in a leadership role.
  • Profound knowledge of international cybersecurity standards, regulations, and best practices, such as (NIST, ISO 27001).
  • Demonstrated experience in managing and mitigating cybersecurity risks.

Skills & Capabilities:

  • Decision-making.
  • Teamwork and collaboration.
  • Excellent communication skills.
  • Organizational skills.
  • Ability to work independently managing assigned projects.
  • Adaptable to change.
  • Integrity and trust.
  • Time management.
  • Fluent in English, both oral and written.

Travel requirements:

  • 15%

 

If you are interested in constantly learning and being challenged on a daily basis, we encourage you to submit your resume or CV.

Werfen appreciates and values diversity. We are an Equal Opportunity/Affirmative Action Employer M/F/D/V.

www.werfen.com

 

Apply