Information Protection Grc Expert

il y a 2 semaines


Luxembourg KPMG Luxembourg Temps plein

KPMG Luxembourg combines our multi-disciplinary approach with deep, practical industry knowledge to help clients meet challenges and respond to opportunities. As a leading consulting firm with more than 1,700 employees and more than 70 nationalities in Luxembourg, we know that our strength and capability come from our people, their experiences, culture and backgrounds.

KPMG Luxembourg is looking for forward-thinking and passionate people to make a difference to our clients, people and communities. To support our growth, we are currently seeking for an Information Protection GRC Expert.

You will manage the Information Security Risk and Compliance program. Also, you will work with cross-functional teams and interface with third parties to support compliance and risk management activities.

**Compliance and Risk Management Leadership**
- Develop, implement and administer technical security standards, as well as a suite of security services and tools to address and mitigate security risk.
- Coordinate the treatment of non-conformity with, and exceptions to, the Information Security Policy, norms and laws (ISO27001, GDPR).
- Address technical policy, compliance and regulatory issues.
- Provide efficient contract reviews.
- Contribute to the Firm's RFP submission processes in the Security related sections of those processes.
- Stay abreast of regulatory and norm changes affecting KPMG Business and information Security (in particular ISO27000 series and GDPR).

**Governance and Project Leadership**
- Develop a risk decision framework to help understand critical areas.
- Work with Information Security Officer, NITSO and QRMP to build cohesive security and compliance programs.

**Risk Management**
- Establish Risk Management Framework Processes and Tools.
- Coordinate and perform the assessment and analysis of information security risks and monitors compliance with security standards and appropriate policies.
- Bachelor or Master degree in IT - ideally with specialty in Information Security.
- At least 6 years of experience with information security concepts and practices with at least 2 years in a Compliance and/or Information Security Risk Management.
- Experience implementing ISMS frameworks in relation to ISO 27001.
- Experience with Information Security Risk Management Framework (ISO27005) and Tools.
- Knowledge of IT Domain (Infrastructure, software development and Data protection).
- ISO27001 Lead Implementer, ISO27005 Risk manager certification.
- Project management skills.
- CISSP, CISM or similar certifications could be an important asset.
- English is mandatory. French is considered as an asset.
- Details and results oriented.
- Strong writing skills.
- Strong organizational, multi-tasking, and time management skills.
- Ability to speak and communicate effectively and in diplomatic manner across all levels of the organization.
- Good influencing and negotiation skills.
- Ability to work independently and within a team.
- Business/client oriented.

**Interested?**

If your profile fits the above description, send us your CV and cover letter.

KPMG is an equal opportunities employer. We believe passionately that employing a diverse workforce is central to our success. Our recruiting decisions are based on your experience and skills.



  • Luxembourg KPMG Luxembourg Temps plein

    **Find your purpose at KPMG Luxembourg** We see a world of opportunity. From uncovering ways to digitalize, to enabling new sectors to take off, to building sustainability and resilience into economies, we know insights reveal new opportunities for all. We are diverse and dedicated problem solvers, part of the worldwide network of high-quality audit, tax...

  • Deep - Consultant Grc

    il y a 2 jours


    Luxembourg POST Group Temps plein

    **DEEP - Consultant GRC**: **Date**:10 déc. 2024 **Lieu**: Luxembourg, Luxembourg **Entreprise**:POST Luxembourg Afin de renforcer les équipes de DEEP au sein de l'équipe Consulting, nous recherchons actuellement un(e)** Consultant(e) - GRC**(M/F/n)**à temps plein. **Vos missions**: Vous êtes en charge des missions de conseil dans les domaines de la...

  • Deep - Consultant Grc

    il y a 2 jours


    Luxembourg EBRC Temps plein

    Afin de renforcer les équipes de DEEP au sein de l'équipe Consulting, nous recherchons actuellement un(e)** Consultant(e) - GRC**(M/F/n)**à temps plein. **Vos missions**: Vous êtes en charge des missions de conseil dans les domaines de la cybersécurité, Gouvernance, la Gestion des Risques et conformité aux règlements et standards auprès de nos...


  • Luxembourg KPMG Luxembourg Temps plein

    KPMG Luxembourg combines our multi-disciplinary approach with deep, practical industry knowledge to help clients meet challenges and respond to opportunities. As a leading consulting firm with more than 1,700 employees and more than 70 nationalities in Luxembourg, we know that our strength and capability come from our people, their experiences, culture and...


  • Luxembourg GovJobs Temps plein

    **Statut** : Employé de l'État **Qui recrute ?**: Ministère des Affaires intérieures - Direction générale de l'immigration **Missions**: - En tant qu’expert en matière de protection internationale, vous intégrerez le Service Réfugiés de la Direction générale de l'immigration qui est en charge d’une part du traitement des demandes de...

  • Intern Grc Tool Management

    il y a 2 semaines


    Luxembourg Cargolux Temps plein

    TASK RESPONSIBILITIES: We are looking for an intern to join our GRC tool management team. The preferred start date would be between February and June 2025. - Implement automation workflows in the GRC tool used by Cargolux' Information Security team. - Configure and implement connectors with relevant IT technologies (e.g. Service Now, Azure DevOps) - Variety...


  • Luxembourg GovJobs Temps plein

    **Statut** : Employé de l'État **Qui recrute ?**: Ministère des Affaires intérieures - Direction générale de l'immigration **Missions**: - En tant qu’expert en matière de protection internationale, vous intégrerez le Service réfugiés de la Direction générale de l'immigration qui est en charge du traitement des demandes de protection...


  • Luxembourg, Luxembourg beBee Careers Temps plein

    Job Title: Data Protection Compliance SpecialistWe are seeking a highly skilled Data Protection Compliance Specialist to join our team. This role will be responsible for developing and maintaining the Information Security Management System (ISMS) at Cargolux. The successful candidate will have a strong background in information security, risk management, and...


  • Luxembourg HIKMA-SOLUTIONS Temps plein

    **Hikma-Solutions recherche pour l'un de ses clients**: Expert en Protection des Données (Avocat ou juriste) (h/f). Vos missions Vous assisterez les avocats et notre clientèle dans le domaine de la protection des données, et plus particulièrement pour : Mises en conformité ; Audits et gap analysis ; Gestion des violations de données ; Réponses...


  • Luxembourg HIKMA - SOLUTIONS Temps plein

    Hikma-Solutions recherche pour l'un de ses clients : Expert en Protection des Données (Avocat ou juriste) (h/f). Vous assisterez les avocats et notre clientèle dans le domaine de la protection des données, et plus particulièrement pour: Mises en conformité ; Audits et gap analysis ; Gestion des violations de données ; Réponses aux personnes...