Information Security Officer

NTT is a leading global IT solutions and services organisation that brings together people, data and things to create a better and more sustainable future.

In today’s ‘iNTTerconnected’ world, connections matter more now than ever. By bringing together talented people, world-class technology partners and emerging innovators, we help our clients solve some of the world’s most significant technological, business and societal challenges.

With people at the heart of our success, NTT is committed to attracting and growing the best talent and providing an environment where everyone feels they can belong and their contribution matters.

**Want to be a part of our team?**

**Working at NTT**

Are you ready to take your career in information security to the next level?

We're on the lookout for an Information Security Officer to join our team in the vibrant tech hub of Luxembourg.

In this dynamic role, you'll be at the forefront of securing our internal operations while also stepping into a consultative role for our valued clients (Information Security Officer as a Service).

Why This Role is Exciting**:

- ** Innovative Challenges**: As an Information Security Officer, you'll have the opportunity to tackle cutting-edge security challenges in a rapidly evolving digital landscape. From designing robust security policies to mitigating risks and responding to incidents, your work will be instrumental in shaping the security of our organization.
- ** Client Collaboration**: This role is more than just an in-house position. You'll become a trusted security consultant for our clients, advising them on security strategies and collaborating on projects that span industries and technologies.
- ** Global Perspective**: Our organization is part of a global group, providing you with a unique opportunity to collaborate on security initiatives with teams around the world. Your expertise will contribute to our global commitment to security.

**Key Responsibilities**:

- ** Internal Security Oversight**:

- Develop and maintain a comprehensive Information Security Management System (ISMS) tailored to our organization's needs.
- Implement and enforce security policies, procedures, and standards to protect our sensitive data assets.
- Collaborate closely with our group organization to align security strategies, share best practices, and ensure a consistent approach to security.
- ** Risk Management**:

- Conduct regular risk assessments and vulnerability scans to identify potential security weaknesses with the support of NTT Global Security Organization
- Work to mitigate risks through appropriate measures.
- Ensure compliance with relevant data protection regulations and international security standards.
- Maintain a robust incident response plan, conducting tabletop exercises to prepare the organization for rapid and effective responses to security incidents.
- ** Security Awareness and Training**:

- Develop and deliver security awareness programs for all employees, promoting a culture of security consciousness.
- Provide ongoing training and guidance to staff on how to recognize and respond to security threats.
- Organize workshops and educational sessions to enhance cybersecurity knowledge across the organization.
- ** Incident Response**:

- Establish an incident response team and plan, defining roles and responsibilities for swift detection and containment of security incidents.
- Conduct thorough post-incident analysis to identify the root causes and prevent future occurrences.
- Maintain incident logs and communicate lessons learned to improve security measures continually.
- ** Consulting Role**:

- Serve as a trusted advisor to our clients, providing guidance on security strategy and best practices.
- Participate in client meetings, offering expert insights into security solutions and risk assessments.
- Collaborate with clients on security assessments, audits, and compliance projects, ensuring they meet regulatory requirements.
- ** Compliance**:

- Ensure our organization's adherence to relevant data protection laws, including GDPR and any specific Luxembourgish regulations.
- Stay current with the evolving regulatory landscape, making necessary adjustments to maintain compliance.
- Collaborate with legal and compliance teams to address security and privacy requirements.

**What will make you a good fit for the role?**

**Qualifications**:

- A Bachelor's degree in computer science, information security, or a related field is a must.
- Proven track record of managing information security and offering expert consulting services.
- In-depth knowledge of information security standards, regulations, and industry best practices.
- Possession of relevant certifications (e.g., CISSP, CISM, CISA) is a strong advantage.
- Exceptional communication and interpersonal skills are essential.
- Fluency in English is required, and proficiency in Luxembourgish, French, or other languages is highly regarded.

**Desired Qualifica