Grc Consultant

**Employment Type**
- Full Time

**Category**
- IT

**External Reference**
- A1H6M000008SCJTQAM

**Location**
- Luxembourg

**Client Description**:
One of our big clients, a European agile company, is looking for a GRC Consultant to join them as soon as possible (permanent contract).

The Professional Spirit that drives us forward - Spring Professional | LHH Recruitment Solutions offers extensive HR solutions through one unique brand. We are specialised in the employment of middle management and highly qualified professionals in contracting, temporary and permanent placement.

**Responsibilities**:

- Developing and participating engagements related to policy compliance, security requirements governance, as well as risk management
- Evaluating business and IT risks with risks analysis standards
- Developing IT security standards, procedures, and controls to manage risks.
- Improve client’s security positioning through process improvement, policy, automation, and the continuous evolution of capabilities
- Evaluating information security threats and their impact on clients IT environment
- Supporting in delivery of work streams for clients in compliance standards
- Assessing incidents, vulnerability management, scans, patching status, secure baselines, penetration test result, phishing, and social engineering tests and attacks
- Providing advice and preparing management reports to track remediation activities
- Between **3 and 5 years of significant experience** in compliance audit, analysis, and risk management (in a consulting environment or with an end-customer)
- Understandings of **ISO/IEC 27001, ITSM COBIT, EBIOS standards and EU GDPR** directive
- Fluent in **French and English** mandatory
- Experience of risk management principles and associated methodologies
- Having a CISSP, CISA or CISM qualification is considered as an asset
- Strong interpersonal skills and excellent communication skills are essential

CONFIDENTIALITY ASSURED.

Ready For Next.

LI-AB1