Chief Information Security Officer/CIS0/Dora/IT Risk Management, English Speaking

Posted 1 day 7 hours ago by EMEA resourcing

Any
Not Specified
Other
Luxembourg, Luxembourg
Job Description

Chief Information Security Officer/CIS0/Dora/IT Risk Management, English Speaking

Working conditions: on site, Part time Role; 2 or 2.5 days per week

Skills:

  • Professional certifications (ANY ONE OF THESE NOT ALL OF THEM) such as CISSP, CISM, CISA, or equivalent.
  • Good experience in information security role.
  • In-depth knowledge of EU financial regulations and standards, particularly related to EMIs and EBA regulations. Familiar with security standards (ISO 27001, NIST CSF, CIS 20, SWIFT, etc.
  • Proven experience in developing and implementing security strategies and programs.
  • Dora
  • IT RISK Management
  • RCSA
  • Cybersurity
  • CSSF Circulars
  • BCM
  • GDPR

We have an exciting opportunity for a Chief Information & Security Officer. This is an exceptional opportunity to join a developing, dynamic, and multi-functional business. The role holder will be hands-on, intuitive, energetic, and forward thinking.

Role & Responsibilities:

  • Develop and Implement Security Strategies:

-Formulate and execute a comprehensive information security strategy.

-Establish and enforce security policies, standards, and procedures.

  • Regulatory Compliance on Information Security perspective:

-Ensure compliance with EU regulations, including GDPR, PSD2, and other relevant legislation on InfoSec perspective.

-Oversee the company's adherence to EMI license requirements on InfoSec perspective.

  • Risk Management:

-Conduct regular risk assessments and vulnerability audits.

-Develop and maintain a risk management framework to identify, assess, and mitigate security risks.

  • Incident Response:

-Establish and manage an incident response plan.

-Lead the response to security breaches, ensuring prompt and effective resolution.

  • Security Architecture and Engineering:

-Oversee the design and implementation of secure network architecture.

-Ensure secure development practices in collaboration with the IT and development teams.

  • Leadership and Training:

-Lead and mentor the information security team.

-Promote a culture of security awareness across the organization through training and communication.

  • Vendor Management:

-Evaluate and manage relationships with security vendors and service providers.

-Oversee the implementation of third-party security solutions.

  • Continuous Improvement:

-Stay current with the latest security trends, threats, and technology.

-Recommend and implement continuous improvements to the security program.

  • Collaboration:

-Work closely with other departments, including IT, legal, compliance, and operations, to ensure a cohesive approach to security.

-Report regularly to senior management and the board on security status and initiatives.

-Need to collaborate with various HQ teams in the Asian time zone.

Working for a well established client.

Flexible start date (ie immediate to 3 months notice)

(If this position do not fit within your experience or is of no interest to you we offer a recommendation fee for any consultant you refer we successfully make a placement with).