Sign in
Back to list

Security GRC Analyst

Engineering, Barcelona, Spain (Hybrid)

Not your usual app. We are the fastest-growing multi-category app connecting millions of users with businesses, and couriers, offering on-demand services from more than 170,000 local restaurants, grocers and supermarkets, and high street retail stores. 

We operate in more than 1500 cities across 25 countries. 

We have a vision: To give everyone easy access to anything in their cities.

YOUR MISSION

Glovo is currently seeking a Security Analyst to focus on today’s evolving cyber security threats. You ensure that policy and compliance documentation, requirements and controls are accurately and timely identified, mapped and communicated to improve security posture. You will be responsible for conducting risk assessments, collaborating with key partners in identifying risk, and documenting requirements for mitigation efforts. Additionally, you will work closely with other members of the Security Team to support security administration tasks, awareness campaigns, and internal security projects.

THE JOURNEY

  • Propose, develop and maintain policies and procedures to improve the security posture.
  • Set up and continuously monitor and report relevant security metrics to provide a holistic insight into Glovo security posture.
  • Assist with the expenses and budget management process for the Security team. 
  • Identify, assess, measure and monitor security risks across Glovo teams.
  • Perform third-party risk assessments.
  • Identify, document and communicate recommended security controls for business units.
  • Support Security team in fostering security culture and designing awareness campaigns. 
  • Work with other stakeholders to ensure compliance with security controls across the organization.
  • Support stakeholders with audit processes and assist with external or internal security compliance requirements.
  • Support security program continuous improvement initiatives.
 WHAT YOU WILL BRING TO THE RIDE

  • BA/BS in Computer Science, Information Systems, or similar field.
  • Minimum 3 years of experience in the field or in a related area.
  • Good understanding of security control frameworks (NIST CSF, CIS/SANS 20, ISO 27001)
  • Previous experience with GDPR and/or PCI DSS.
  • Awareness of security best practices and industry trends.
  • Strong ability to manage and report on multiple projects, prioritizing efforts, managing time effectively, and requiring minimal direction in the execution.
  • Proven problem solving, analytical and investigative skills combined with the ability to develop creative solutions and navigate through ambiguity in a fast-paced, agile environment
  • Proven team player, collaborating well with others to tackle problems in a team-focused dynamic.
  • Excellent English written and communications skills, as well as strong interpersonal and relationship building skills.
  • Familiarity with cloud technologies (e.g., GCP and AWS preferred).

Nice-to-haves: 

  • Professional security certifications (CISSP, CISM, CISA or equivalent).
  • Previous experience with FAIR or similar risk quantification frameworks.
  • Experience with GRC tooling would be a plus (e.g. RSA Archer, SAP GRC, StandardFusion, ServiceNow, etc).
  • Development skills to automate integrations or processes (e.g. python). 
  • Experience with business continuity processes. 
  • Working experience in regulated environments.
 

Even if it seems you don't meet our musts don't let it stop you, we are all about finding the best talent out there! Skills can be learned, and embracing diversity is invaluable.

We believe driven talent deserves:

  • 🌟 An enticing equity plan *if applicable 
  • 💪 Top-notch private health insurance to keep you at your peak.
  • 🍔 Monthly Glovo meal benefits so you can test new features in our beta app (and to satisfy your cravings!) 
  • 💳 Discounts on transportation, food, and even kindergarten expenses or office-based nursery. 
  • 🏊 Discounted gym memberships to keep you energized.
  • 🏖️ The freedom to work from home two days a week, and the opportunity to work from anywhere for up to three weeks a year. .
  • 👪 Enhanced parental leave (*if applicable) 
  • 🧠 Online therapy and wellbeing benefits 

We’ll deliver a non-vanilla culture built on talent, where we work to amplify the impact on millions of people, paving the way forward together. 

At Glovo, we truly value diversity for the positive impact it brings to our teams, products, and culture. We're dedicated to providing equal opportunities for talent from all backgrounds. 

Feel free to note your pronouns in your application (e.g., she/her/hers, he/him/his, they/them/theirs, etc).

Delve into our culture by taking a peek at our Instagram and check out our Linkedin and website!

 

Apply

Security GRC Analyst

*Required

Do you need, or will you need in the future, any immigration-related support or sponsorship from Glovo in order to begin the employment at the work location? *
How did you find out about this job opportunity? *
Glovo’s hybrid ways of working mean 3 days in the office, and 2 days WFH, does this match your preferences or requirements?
Do you require any special adjustments during the interview process?

Identity Survey

It is voluntarily provided by you and anonymous to the Glovo team.

This survey will not affect the selection process. 

Glovo is an Equal Opportunity Employer. All people will be considered for employment regardless of their gender identity, sexual orientation, race/ethnicity, neurodiversity or disability status, family or parental status, nationality, religion or other personal characteristics and backgrounds that make us as humans unique. 

 

This demographic voluntary survey helps Glovo understand our pipeline and ensure that all candidates have equal opportunities during the entire hiring process.

This survey also allows us to improve our process and systems ensuring we build a more inclusive company. If you decide to share voluntarily your personal information with us, all the information you provide will be, under all circumstances. Find out more about our Identity Survey and Statement here.

 

By sharing your data with us in a voluntary way, you agree that we can use your responses for the purposes we've mentioned in our statement. This survey is not focused on making adjustments to the hiring process to make any accommodation needs because of neurodiversity or disability. If you have any accommodation needs, please let us know in the application form.

 

 

Glovo’s data privacy statement

In case the recruitment process does not end with the establishment of a labour relationship between the applicant and the Controller, the Controller will retain the applicant’s data for a period of 2 years from the date of the last communication, issued either by You or the Controller, declaring the end of the recruitment process without sending and/or accepting the possible offer. Under the GDPR, you have the right to request access to your personal data, to request that your personal data be rectified, cancelled or erased, and/or to request that processing of your personal data be limited.

You also have the right to data portability. In addition, in case you consider your rights have been violated, you may lodge a complaint with an EU supervisory authority.

Which of these best describes your gender identity? (Please check all that apply) *
Do you identify as transgender? *
Which of these best describes your current sexual orientation? (Please check all that apply) *
Do you identify as having a disability? *
Do you consider yourself to be neurodiverse? *
Do you have 33% or above diverse abilities? *
How would you describe your ethnicity? *
Please upload either: pdf, doc, docx, txt, rtf. Max 2 MB
Please upload either: pdf, doc, docx, txt, rtf. Max 2 MB

GLOVO as data controller may process the data you share with us through your application for the purposes of the Controller’s recruitment related activities. For more information on how we process your data and how to exercise your rights, please refer to our data privacy statement