Empresa:

Blaze Information Security

Descrição da Função

Blaze Information Security is a cybersecurity firm focused on offensive security, including penetration testing, red teaming, and technical consulting. Since 2016, we have helped organizations strengthen their security through high-quality, real-world security assessments delivered by experienced specialists.

We are now expanding into advisory services for tech startups and scaleups that need practical support to build their security, risk and compliance foundations without hiring a full in-house security leadership team. We are looking for a Cybersecurity Consultant, Startup Security & Compliance, to help deliver and shape this service line.

This is a hands-on, client-facing consulting role for someone who can work directly with founders, operations leaders, product and engineering teams, and security stakeholders to help them build a solid security program, prepare for compliance, vendor security due diligence, and improve their cybersecurity maturity over time.

This is not a traditional CISO role. We are not looking for an enterprise executive profile. We are looking for a practical consultant who knows how to help growing companies put the right cybersecurity foundations in place and move forward in a structured, realistic way.

Key responsibilities

• Deliver security and compliance advisory engagements for tech startups and scaleups
• Assess client security posture and identify practical gaps, priorities, and next steps
• Help clients design and establish core elements of their cybersecurity program, including policies, controls, risk management practices, and internal processes
• Develop clear, realistic security roadmaps tailored to each client's stage, business model, and compliance goals
• Guide clients through compliance and regulatory readiness initiatives, including SOC 2, ISO 27001, NIS 2, and DORA
• Act as a trusted day-to-day advisor on security and compliance topics, helping clients make sound decisions without unnecessary complexity
• Support clients with security policies, control design, risk assessments, audit readiness, and internal security processes
• Work closely with Blaze's technical teams to connect advisory work with penetration testing, validation, and technical remediation where needed
• Support pre-sales conversations by helping scope client needs and explain the value of security and compliance program support
• Contribute to the evolution of this service line by improving delivery approaches, templates, and internal best practices

Requirements

• Experience in cybersecurity consulting, advisory, GRC, or security program development
• Experience working directly with clients on security policies, controls, compliance initiatives, or risk-related projects
• Familiarity with frameworks and regulations such as SOC 2, ISO 27001, GDPR, NIS 2, and DORA
• Strong communication skills and the ability to explain security issues clearly in business terms
• A practical mindset and sound judgment when working with companies that have limited time, budget, or internal security resources
• Ability to manage multiple client engagements in a structured and reliable way
• Comfort working in an environment where the service is growing and still being refined
• Fluency in English is mandatory

Why join Blaze

This is an opportunity to help build a practical, high-value advisory offering for tech startups and scaleups that need security guidance early, before they are ready for a full internal security leadership function. You will be joining a respected cybersecurity firm with deep technical roots and helping shape a service that combines practical security advice, compliance acceleration, and real-world execution.

If you enjoy client-facing consulting, know how to turn security requirements into practical action, and want to help growing companies build security the right way, we would like to hear from you.

We are looking for individuals willing to work from our office in Porto, Portugal. Remote work in Western Europe may be considered for the right candidate. Applicants must have valid work authorization for the EU. Visa sponsorship is not available.

To apply, please submit your resume to and a brief cover letter outlining your relevant experience and explaining why you would be a fit for this role.

Salary range: €40,000 - €55,000 per year (gross)

This is an indicative salary band, depending on the candidate's experience, skills, and seniority. We're open to discussing this further during the interview process to ensure a fair and competitive offer. Apply only if you're comfortable with this range and meet the requirements above.

Observações

Porto (Portugal)