Job Description :
- Establish risk guidelines for the information security strategy of the client
- Contribute to defining the Information Security Strategy, including cyber risks mitigation.
- Establish guidelines for the design of the information security controls
- Align the client's risk appetite for security incidents and vulnerability management
- Monitor and review the management of security events, incidents, and vulnerabilities upon their conclusion
- Establish an Identity and Access Management (IAM) policy, review the implementation of the controls and conduct periodic reviews of user access
- Participate in the planning of IT security assessments and penetration testing by the IT Security function and review the status of the follow-up actions
- Review the management of IT security incidents
- Review the management of web activities reports
- Review the performance monitoring reports (availability, backup, capacity, network)
- Design and perform regular IT access review and implementation of IT controls
- Provide input to the training and phishing exercises organised by IT&FM
- Perform periodic reviews of the information security risk assessments conducted for prospective service providers and the risk assessments conducted pursuant to the Outsourcing Policy
- Establish information security rules which are reflected in Information Security Policy
Requirements :
University degree in the field of IT risk management, Computer Sciences or related disciplinesMinimum 8 years of relevant experience in Information security or related activitiesProven track record of success in information security implementation, information security audit, preferably in a financial services domainExperience in Information Security Policy implementation and maintenanceKnowledge of relevant ISO standards (e.g. ISO / IEC 2700x)CISA / CISSP or equivalent certificationTechnically expert in information security with a strong understanding of industry best practices and regulationsKnowledge of principles and techniques of information security risk analysis and assessmentExperience in incident management and / or crisis management response proceduresExperience in investigation and response managementExperience in developing and implementing monitoring, performance, and reporting metricsExposure to operational risk management and activities will be considered a plusStrong written and verbal communication skillsFluency in EnglishOur offer :
A particularly attractive salary package, with many additional benefits, to attract the best of you. A professional and stimulating work environment in the field of telecommunications. Multiple career opportunities within a changing group, advanced training in new technologies, rich and recognized expertise.
Your application will be treated with confidentiality. We would be very happy to organize a first appointment to talk to you about this opportunity and consider your next career development. Send us your CV.
Are you looking for a challenging opportunity and want to take advantage of a great job to give new inpulse to your career? This offer is for you. In order to support one of our clients, a large and famousEuropean Public Institution in Luxembour g, we are looking for a Cybersecurity Expert Lead Manager.
EKXEL IT Services , is a European leader in IT engineering, high-tech consulting and IT services . We offer a unique blend of expertise and support major European groups with international vocation to implement and succeed in their project to transform and modernize their information systems.