Information Protection Grc Team Leader

**Find your purpose at KPMG Luxembourg**

We see a world of opportunity. From uncovering ways to digitalize, to enabling new sectors to take off, to building sustainability and resilience into economies, we know insights reveal new opportunities for all.

We are diverse and dedicated problem solvers, part of the worldwide network of high-quality audit, tax and advisory services.

We offer excellent career prospects that balance autonomy, flexibility, and responsibility. Our comprehensive benefits inspire our people to do and feel their best.

Right now, we have more than 1800 employees from over 70 nationalities. Join our growing group of young and youthful innovators to uncover a world of opportunity together.

**We are seeking an Information Protection GRC Team Leader.**

The role of the Information Protection GRC Team Leader is to manage the Information Protection GRC Team to ensure appropriate level of security for KPMG in compliance with KPMG Policies, Group requirements, security standards and community best practices.

Define, improve, review and validate processes and procedures. Ensure appropriate organizational effectiveness and bring new ideas and inputs by doing some technological watch, capacity planning and prepares budget needs. Define and implement a common management system aligned with ISO standard for information Security, Privacy and Business continuity.

**What you will be working on**
- Lead and develop the GRC Team
- Act as a reference for the Management
- Delegate tasks and responsibilities
- Define and follow-up team members goals and objectives
- Ensure proper training is provided to team members
- Validate the team processes and procedures
- Plan resources within the team
- Ensure Regulatory and compliance watch for continuous improvement of his area
- Be responsible for supplier contract and services management
- Define the roadmap to ISO 27001 Certification
- Review and validate Information security policies in line with KPMG Global Framework
- Establish a Risk assessment framework to comply with our Obligations
- Whenever possible, automate activities
- Provide expertise in Information Security purposes
- Validate Information security part of contracts
- Ensure due diligence replies
- Ensure 3rd party assessment
- Prepare budget in order to meet the needs and expectations of his duties

**What we look for**
- Education requirements : Bachelor or Master degree in Information Security or Compliance domains
- Work experience requirements : 12+ years in Information Security role
- Project management
- Experience in assessing and implementing security and risk standards using ISO 27k, NIST, ITIL, COBIT, CCM
- Strong knowledge of Information Security audit
- Strong knowledge of IT Security tools used at KPMG Luxembourg
- Team organisation & management
- Process definition and improvement
- Fluent in English. French is a strong asset
- Learning eagerness
- Stress management
- Service and client orientation
- Proactivity in finding solutions
- Analytical skills
- Team management
- Ability to take initiative
- Ability to delegate
- Excellent communication skills
- Challenge the status quo

**What will you get**

We offer more than jobs. With our flexible work model, you can enjoy work and rest and recharge. Our competitive compensation packages, paid time away from work, recognition bonuses and dedicated programs for personal development and wellbeing help to keep everyone refreshed and motivated.

KPMG is an equal opportunities employer. We believe passionately that employing a diverse workforce is central to our success. Our recruiting decisions are based on your experience and skills.