GRC Expert
Public GroupYou'll be redirected to the original listing.
Description
The organization
Why Join Us? It’s More Than a Job in Retail, It’s Your Story.
At Public Group, we believe in the power of our people in a sustainable way. That’s why we’re not just focused on what you do, but who you become. We’re committed to fueling your growth, because when you win, we all win. Imagine a place where you feel supported, valued, and empowered to make a real difference. A place where you can build a career you love, to leave your mark in our story!
Public Group strategically invests to create an ecosystem of innovative scaleups around its Omnichannel Retail business, with the objective to provide exciting customer experiences and foster Entrepreneurship in Greece. We bring together technology, talent & entrepreneurship to create value in the Greek market. Our role is to help our subsidiaries or investee companies grow and their founders to succeed through capital and creative synergies. Our investment portfolio includes Public-MediaMarkt, iRepair, Douleutaras.gr, PublicNEXT, Venture Friends.
PublicNEXT leads the digital transformation of retail, with solutions to reimagine processes, integrate technologies and introduce innovative services or platforms that transform employee and customer experience. We develop and unleash the best technology solutions that shape the future of retail. Our team of software developers, engineers, digital and IT experts combine strong technical skills and entrepreneurial thinking to help organizations stay ahead.
As future-ready innovators, we engage in multiple projects and create growth opportunities for everyone to find what they are looking for. Together we can reimagine retail and unleash the best technology platforms to create new capabilities for people and inspire them to enjoy life. We grow by continuously developing on each other’s ideas.
Let’s grow together.
#LI-Hybrid
At Publicnext, we are strengthening our cybersecurity governance, risk, and compliance (GRC) function and looking for a GRC Expert to join the team. Working closely with and reporting directly to the CISO, you will help us mature our risk management and resilience across cybersecurity, privacy, business continuity, AI compliance, and third-party risk.
This is a hands-on delivery role with real ownership. You will run assessments, maintain our risk and compliance posture against recognized frameworks, and support the growing intersection of GRC and IT contract management, reviewing business terms, shaping governance and SLAs, and ensuring our internal and third-party arrangements meet our standards.
Responsibilities:
Develop and maintain cybersecurity policies, standards, and procedures aligned to recognized frameworks and regulations (NIST CSF, GDPR, NIS2, PCI DSS, EU AI Act).
Facilitate cybersecurity and technology risk assessments; maintain risk registers and track remediation activities to closure.
Participate in risk assessments, vulnerability assessments, and gap analyses, and translate findings into practical improvement plans.
Support compliance initiatives including DPIAs, TPRAs (Third-Party Risk Assessments), and EU AI Act readiness.
Coordinate and support internal and external audits and Cyber Insurance audits.
Oversee third-party cybersecurity risk management processes, ensuring internal teams and vendors adhere to our standards.
Review contracts’ business terms and highlight areas for improvement.
Contribute to the design of governance and SLAs for contract management.
Support the legal and partner interface on contracts, NDAs, and Technical & Organizational Measures (TOMs).
Take ownership of delivery within y…