Information Protection Grc Expert
il y a 2 semaines
KPMG Luxembourg combines our multi-disciplinary approach with deep, practical industry knowledge to help clients meet challenges and respond to opportunities. As a leading consulting firm with more than 1,700 employees and more than 70 nationalities in Luxembourg, we know that our strength and capability come from our people, their experiences, culture and backgrounds.
KPMG Luxembourg is looking for forward-thinking and passionate people to make a difference to our clients, people and communities. To support our growth, we are currently seeking for an Information Protection GRC Expert.
You will manage the Information Security Risk and Compliance program. Also, you will work with cross-functional teams and interface with third parties to support compliance and risk management activities.
**Compliance and Risk Management Leadership**
- Develop, implement and administer technical security standards, as well as a suite of security services and tools to address and mitigate security risk.
- Coordinate the treatment of non-conformity with, and exceptions to, the Information Security Policy, norms and laws (ISO27001, GDPR).
- Address technical policy, compliance and regulatory issues.
- Provide efficient contract reviews.
- Contribute to the Firm's RFP submission processes in the Security related sections of those processes.
- Stay abreast of regulatory and norm changes affecting KPMG Business and information Security (in particular ISO27000 series and GDPR).
**Governance and Project Leadership**
- Develop a risk decision framework to help understand critical areas.
- Work with Information Security Officer, NITSO and QRMP to build cohesive security and compliance programs.
**Risk Management**
- Establish Risk Management Framework Processes and Tools.
- Coordinate and perform the assessment and analysis of information security risks and monitors compliance with security standards and appropriate policies.
- Bachelor or Master degree in IT - ideally with specialty in Information Security.
- At least 6 years of experience with information security concepts and practices with at least 2 years in a Compliance and/or Information Security Risk Management.
- Experience implementing ISMS frameworks in relation to ISO 27001.
- Experience with Information Security Risk Management Framework (ISO27005) and Tools.
- Knowledge of IT Domain (Infrastructure, software development and Data protection).
- ISO27001 Lead Implementer, ISO27005 Risk manager certification.
- Project management skills.
- CISSP, CISM or similar certifications could be an important asset.
- English is mandatory. French is considered as an asset.
- Details and results oriented.
- Strong writing skills.
- Strong organizational, multi-tasking, and time management skills.
- Ability to speak and communicate effectively and in diplomatic manner across all levels of the organization.
- Good influencing and negotiation skills.
- Ability to work independently and within a team.
- Business/client oriented.
**Interested?**
If your profile fits the above description, send us your CV and cover letter.
KPMG is an equal opportunities employer. We believe passionately that employing a diverse workforce is central to our success. Our recruiting decisions are based on your experience and skills.
-
Information Protection Grc Team Leader
il y a 4 jours
Luxembourg KPMG Luxembourg Temps plein**Find your purpose at KPMG Luxembourg** We see a world of opportunity. From uncovering ways to digitalize, to enabling new sectors to take off, to building sustainability and resilience into economies, we know insights reveal new opportunities for all. We are diverse and dedicated problem solvers, part of the worldwide network of high-quality audit, tax...
-
Deep - Consultant Grc
il y a 2 jours
Luxembourg POST Group Temps plein**DEEP - Consultant GRC**: **Date**:10 déc. 2024 **Lieu**: Luxembourg, Luxembourg **Entreprise**:POST Luxembourg Afin de renforcer les équipes de DEEP au sein de l'équipe Consulting, nous recherchons actuellement un(e)** Consultant(e) - GRC**(M/F/n)**à temps plein. **Vos missions**: Vous êtes en charge des missions de conseil dans les domaines de la...
-
Deep - Consultant Grc
il y a 2 jours
Luxembourg EBRC Temps pleinAfin de renforcer les équipes de DEEP au sein de l'équipe Consulting, nous recherchons actuellement un(e)** Consultant(e) - GRC**(M/F/n)**à temps plein. **Vos missions**: Vous êtes en charge des missions de conseil dans les domaines de la cybersécurité, Gouvernance, la Gestion des Risques et conformité aux règlements et standards auprès de nos...
-
Information Protection Operations Expert
il y a 1 semaine
Luxembourg KPMG Luxembourg Temps pleinKPMG Luxembourg combines our multi-disciplinary approach with deep, practical industry knowledge to help clients meet challenges and respond to opportunities. As a leading consulting firm with more than 1,700 employees and more than 70 nationalities in Luxembourg, we know that our strength and capability come from our people, their experiences, culture and...
-
Expert en Matière de Protection Internationale
il y a 1 jour
Luxembourg GovJobs Temps plein**Statut** : Employé de l'État **Qui recrute ?**: Ministère des Affaires intérieures - Direction générale de l'immigration **Missions**: - En tant qu’expert en matière de protection internationale, vous intégrerez le Service Réfugiés de la Direction générale de l'immigration qui est en charge d’une part du traitement des demandes de...
-
Intern Grc Tool Management
il y a 2 semaines
Luxembourg Cargolux Temps pleinTASK RESPONSIBILITIES: We are looking for an intern to join our GRC tool management team. The preferred start date would be between February and June 2025. - Implement automation workflows in the GRC tool used by Cargolux' Information Security team. - Configure and implement connectors with relevant IT technologies (e.g. Service Now, Azure DevOps) - Variety...
-
Expert en Matière de Protection Internationale
il y a 7 jours
Luxembourg GovJobs Temps plein**Statut** : Employé de l'État **Qui recrute ?**: Ministère des Affaires intérieures - Direction générale de l'immigration **Missions**: - En tant qu’expert en matière de protection internationale, vous intégrerez le Service réfugiés de la Direction générale de l'immigration qui est en charge du traitement des demandes de protection...
-
Data Protection Compliance Specialist
il y a 3 jours
Luxembourg, Luxembourg beBee Careers Temps pleinJob Title: Data Protection Compliance SpecialistWe are seeking a highly skilled Data Protection Compliance Specialist to join our team. This role will be responsible for developing and maintaining the Information Security Management System (ISMS) at Cargolux. The successful candidate will have a strong background in information security, risk management, and...
-
Expert en Protection Des Données
il y a 2 semaines
Luxembourg HIKMA-SOLUTIONS Temps plein**Hikma-Solutions recherche pour l'un de ses clients**: Expert en Protection des Données (Avocat ou juriste) (h/f). Vos missions Vous assisterez les avocats et notre clientèle dans le domaine de la protection des données, et plus particulièrement pour : Mises en conformité ; Audits et gap analysis ; Gestion des violations de données ; Réponses...
-
Expert en Protection Des Données
il y a 4 jours
Luxembourg HIKMA - SOLUTIONS Temps pleinHikma-Solutions recherche pour l'un de ses clients : Expert en Protection des Données (Avocat ou juriste) (h/f). Vous assisterez les avocats et notre clientèle dans le domaine de la protection des données, et plus particulièrement pour: Mises en conformité ; Audits et gap analysis ; Gestion des violations de données ; Réponses aux personnes...