Head of Information Security, Risks, Governance (m/f)
Baloise Group
Luxembourg, Bertrange
il y a 4j

Ce qui vous attend

La passion pour la sécurité : votre emploi

Reporting directly to the group CISO and to a localExecutive committee member, the Head of Information Security, Risks, Governancewill manage a team in charge of the Information security, the InformationSecurity risk and the IT governance.

Responsabilités principales

  • Manage a team in charge of Information Security, Risks and Governance
  • Be the local point of contact with the Group information security team
  • Deal with the organisation’s security framework politics, standards, security procedures
  • Work with business and IT teams to develop information security requirements and concepts
  • Identify information security risks within the company and recommend technologies and services for mitigation
  • Participate in the development and implementation of the appropriate and effective controls to mitigate identified threats and risks (Second line of defence)
  • Manage the Vulnerability management process and follow-up
  • Organise the Disaster Recovery Plan (DRP)
  • Manage security incidents, response planning and investigation in case of breaches
  • Deal with internal and external audit regarding audit reports and findings
  • Perform monitoring of third parties, managed services (SLA) and contractual information security requirement
  • Oversee and coordinate regular activities of the security providers to ensure coordination and proper configuration is in place to meet or exceed policy
  • Ensure IT and information security strategy compliance with law and regulation
  • Ce que nous attendons

    Laréussite assurée : votre profil

  • Master degree in InformationSecurity or Information Technology
  • 10 years’ security relatedwork experience, preferably within an insurance institution
  • Professional securitymanagement certification, such as a Certified Information Systems SecurityProfessional (CISSP) or Certified Information Security Manager (CISM) is apreferred asset
  • Strong IT Risk experienceand ability to perform IT risk assessments
  • IT governance andcompliance experience
  • Experience in processorientation; knowledge of methods and procedures in the information securitysector
  • Strong technical ITbackground (a former engineer)
  • Knowledge of general legaland regulatory conditions and requirements in the insurance / financial industry,for example ISO 2700x, NIST,
  • Very good IT skills,competent handling of MS Office application
  • Strong people managementskills
  • Excellent analytical skillsand experience to understand structure and prepare / explain complex topics
  • Team orientation and strongcommunication skills
  • Excellent communication andredaction skills in French and English; German (nice to have)
  • Willingness to travel
  • Postuler
    Ajouter aux favoris
    Retirer des favoris
    Mon email
    En cliquant sur « Continuer », je consens au traitement de mes données et à recevoir des alertes email, tel que détaillé dans la Politique de confidentialité de neuvoo. Je peux retirer mon consentement ou me désinscrire à tout moment.
    Formulaire de candidature