Information Protection Grc Expert
il y a 4 semaines
KPMG Luxembourg combines our multi-disciplinary approach with deep, practical industry knowledge to help clients meet challenges and respond to opportunities. As a leading consulting firm with more than 1,700 employees and more than 70 nationalities in Luxembourg, we know that our strength and capability come from our people, their experiences, culture and backgrounds.
KPMG Luxembourg is looking for forward-thinking and passionate people to make a difference to our clients, people and communities. To support our growth, we are currently seeking for an Information Protection GRC Expert.
You will manage the Information Security Risk and Compliance program. Also, you will work with cross-functional teams and interface with third parties to support compliance and risk management activities.
**Compliance and Risk Management Leadership**
- Develop, implement and administer technical security standards, as well as a suite of security services and tools to address and mitigate security risk.
- Coordinate the treatment of non-conformity with, and exceptions to, the Information Security Policy, norms and laws (ISO27001, GDPR).
- Address technical policy, compliance and regulatory issues.
- Provide efficient contract reviews.
- Contribute to the Firm's RFP submission processes in the Security related sections of those processes.
- Stay abreast of regulatory and norm changes affecting KPMG Business and information Security (in particular ISO27000 series and GDPR).
**Governance and Project Leadership**
- Develop a risk decision framework to help understand critical areas.
- Work with Information Security Officer, NITSO and QRMP to build cohesive security and compliance programs.
**Risk Management**
- Establish Risk Management Framework Processes and Tools.
- Coordinate and perform the assessment and analysis of information security risks and monitors compliance with security standards and appropriate policies.
- Bachelor or Master degree in IT - ideally with specialty in Information Security.
- At least 6 years of experience with information security concepts and practices with at least 2 years in a Compliance and/or Information Security Risk Management.
- Experience implementing ISMS frameworks in relation to ISO 27001.
- Experience with Information Security Risk Management Framework (ISO27005) and Tools.
- Knowledge of IT Domain (Infrastructure, software development and Data protection).
- ISO27001 Lead Implementer, ISO27005 Risk manager certification.
- Project management skills.
- CISSP, CISM or similar certifications could be an important asset.
- English is mandatory. French is considered as an asset.
- Details and results oriented.
- Strong writing skills.
- Strong organizational, multi-tasking, and time management skills.
- Ability to speak and communicate effectively and in diplomatic manner across all levels of the organization.
- Good influencing and negotiation skills.
- Ability to work independently and within a team.
- Business/client oriented.
**Interested?**
If your profile fits the above description, send us your CV and cover letter.
KPMG is an equal opportunities employer. We believe passionately that employing a diverse workforce is central to our success. Our recruiting decisions are based on your experience and skills.
-
Contrôleur interne – Domaine Sécurité de l'information
il y a 3 semaines
Luxembourg, Luxembourg Commission de Surveillance du Secteur Financier (CSSF) Temps pleinContrôleur interne – Domaine Sécurité de l'information (m/f)MissionLa fonction « Sécurité de l'information » (deuxième ligne de défense et RSSI) souhaite renforcer ses compétences dans le domaine du contrôle interne et de l'ingénierie des processus de sécurité de l'information.Rôle & responsabilitésPréparer et participer aux plans de...
-
Grc Consultant
il y a 5 jours
Luxembourg LHH Temps plein**Client Description**: One of our big clients, a European agile company, is looking for a GRC Consultant to join them as soon as possible for a permanent contract. LHH Recruitment Solutions offers extensive HR solutions through one unique brand. We are specialised in the employment of middle and top management and highly qualified professionals in...
-
Contrôleur interne – Domaine Sécurité de l’information
il y a 1 mois
Luxembourg Commission de Surveillance du Secteur Financier (CSSF) Temps pleinContrôleur interne – Domaine Sécurité de l’information (m/f)MissionLa fonction « Sécurité de l’information » (deuxième ligne de défense et RSSI) souhaite renforcer ses compétences dans le domaine du contrôle interne et de l’ingénierie des processus de sécurité de l’information.Rôle & responsabilitésPréparer et participer aux plans...
-
Data Protection Advisor
il y a 4 semaines
Luxembourg Arendt & Medernach Temps pleinArendt Regulatory & Consulting S.A. is a Luxembourg-based advisory firm recognized in regulatory advisory, fund distribution, governance and forensic investigations and litigation support. It offers expert services and consulting to an international and sophisticated client base across multiple industries. The Forensic Investigations, Corporate Intelligence...
-
Expert en Protection Des Données
il y a 4 semaines
Luxembourg Axis Temps pleinNotre client propose un contrat en CDI dans un environnement dynamique, flexible et autonome. **Description** Vos responsabilités: Vous assisterez les avocats et la clientèle dans le domaine de la protection des données, et plus particulièrement pour: - Mises en conformité ; - Audits et gap analysis ; - Gestion des violations de données ; - Réponses...
-
Data Protection Advisor
il y a 4 semaines
Luxembourg Arendt Temps pleinArendt Regulatory & Consulting S.A. is a Luxembourg-based advisory firm recognized in regulatory advisory, fund distribution, governance and forensic investigations and litigation support. It offers expert services and consulting to an international and sophisticated client base across multiple industries. The Forensic Investigations, Corporate Intelligence...
-
Expert en Protection Des Données
il y a 4 semaines
Luxembourg Axis Temps pleinOur client offers a permanent contract in a dynamic, flexible and autonomous environment. **Description** Your responsibilities: You will assist attorneys and clients in the area of data protection, specifically with: - Compliance; - Audits and gap analysis; - Data breach management; - Supervisory authority audits; - Response to the supervisory...
-
Data Protection Advisor
il y a 1 semaine
Luxembourg Arendt Regulatory & Consulting Temps pleinArendt Regulatory & Consulting S.A. is a Luxembourg-based advisory firm recognized in regulatory advisory, fund distribution, governance and forensic investigations and litigation support. It offers expert services and consulting to an international and sophisticated client base across multiple industries. Arendt Regulatory & Consulting is a young and...
-
Stagiaire - Data Protection
il y a 1 mois
Luxembourg POST Luxembourg Temps plein**Stagiaire - Data Protection**: **Date**:23 févr. 2024 **Lieu**: Luxembourg, Luxembourg **Entreprise**:POST Luxembourg Acteur majeur des télécoms et opérateur national du service postal et financier postal, le groupe POST Luxembourg est un pilier incontournable de l'économie luxembourgeoise. Afin d’assurer la conformité de ses activités à la...
-
Délégué à La Protection Des Données
il y a 4 semaines
Luxembourg GovJobs Temps plein**Statut** : Employé de l'État **Qui recrute ?**: Ministère de l'Éducation nationale, de l'Enfance et de la Jeunesse - Direction générale des affaires juridiques et de la coordination juridique **Missions**: - Organiser et maintenir la conformité du Ministère de l’Éducation nationale, de l’Enfance et de la Jeunesse et des administrations qui...
-
Expert en Affaires Juridiques
il y a 4 semaines
Luxembourg GovJobs Temps plein**Statut** : Employé de l'État **Qui recrute ?**: Ministère des Affaires étrangères et européennes - Direction de l'immigration **Missions**: - En tant qu’expert en affaires juridiques, vous intègrerez le Service réfugiés de la Direction de l'immigration qui est en charge du traitement des demandes de protection internationale introduites au...
-
Data Protection Officer
il y a 4 semaines
Luxembourg Amaris Consulting Temps plein**Job description**: **Description du poste** - Assurer le respect des lois sur la protection des données et mettre en œuvre les meilleures pratiques en matière de confidentialité. - Fournir une orientation stratégique pour gérer les risques liés à la vie privée et aux données. - Mener des audits internes pour assurer le respect continu de toutes...
-
Legal Advisor in Data Protection
il y a 1 mois
Luxembourg Université du Luxembourg Temps pleinThe **University of Luxembourg** is an **international research university** with a distinctly **multilingual** and **interdisciplinary** character. The University was founded in 2003 and counts more than 6,700 students and more than 2,000 employees from around the world. The University’s faculties and interdisciplinary centres focus on research in the...
-
Grc Consultant
il y a 4 semaines
Luxembourg Econocom Temps pleinEconocom designs, finances and oversees companies' digital transformation. The Econocom Group share is part of the BelMid index. **Responsibilities**: Developing and participating in implementation of client initiatives focused on the reduction of technology risk, governance and compliance with policies and external regulatory compliance Evaluating...
-
Data Protection Officer
il y a 1 mois
Luxembourg amaris Temps pleinJob description Description du poste Assurer le respect des lois sur la protection des données et mettre en œuvre les meilleures pratiques en matière de confidentialité. Fournir une orientation stratégique pour gérer les risques liés à la vie privée et aux données. Mener des audits internes pour assurer le respect continu de toutes les...
-
Data Protection Correspondant
il y a 4 semaines
Luxembourg ArcelorMittal Temps pleinAs part of Human Resources Shared Service Center - your mission will be to lead, coordinate and monitor within the organization of all measures necessary to ensure compliance with the Group’s personal data protection policies and procedures for ArcelorMittal in Luxembourg, provide expertise advice, educate employees and support the organization on data...
-
(Senior) Information Security Officer
il y a 1 semaine
Luxembourg European Investment Bank Temps pleinThe **EIB**, the European Union's bank, is seeking to recruit for its **Group Risk & Compliance Directorate (GR&C) - Office of the Group Chief Compliance Officer (GR&C-OCCO) - Group Non-Financial Risk Department (GNFR), Project Management and Information Security Division (PMI), Information Security Risk Unit (InfoSec)** at its headquarters in Luxembourg, a...
-
Information Security Risk Analyst
il y a 2 jours
Luxembourg, Luxembourg Banque Internationale du Luxembourg Temps pleinJob Description: Responsible for leading and coordinating actions related to developing and driving the implementation of the information security plan, engaging with stakeholders to achieve business objectives. Challenge systems and procedures to identify potential adverse events. Manage information classification, control, and protection. Handle security...
-
(Associate) Ciam Solution Expert
il y a 1 mois
Luxembourg European Investment Bank Temps pleinThe EIB, the European Union's bank, is seeking to recruit for its **Group Corporate Services Directorate (GCS) - Group Digital Office (GCS-GDO) - Cybersecurity Division (CD) - Access, Controls & Governance Unit (ACG)** at its headquarters in Luxembourg, a **(Associate) CIAM Solution Expert**. This is a full-time position at grade 4/5 for which the EIB offers...
-
Associate CIAM Solution Expert
il y a 2 semaines
Luxembourg, Luxembourg European Investment Bank Temps pleinJob DescriptionDescription –>As a CIAM Solution Expert, you will have a pivotal role in innovating our approach to Identity and Access Management (IAM). This role is a blend of technical acumen and strategic approach. Your mission will be to implement cutting-edge CIAM tools and practices, improving our IAM capabilities. In this crucial role, you will be...