Information Security Risk Assurance Officer
il y a 5 heures
Tracing its origins to 1585, Deutsche Börse Group has become one of the world’s leading exchange organisations and an innovative market infrastructure provider. In this role, we provide investors, financial institutions and companies access to global capital markets. By creating trust in the markets of today and tomorrow we foster growth and contribute to the prosperity of future generations. Deutsche Börse Group is an international company, headquartered in Frankfurt/Main, Germany. With more than 6,700 employees, the company has a strong global presence for its customers all over the world, including Luxembourg, Prague, Chicago, London, Cork, New York and many other locations. Clearstream is a leading European supplier of post-trading services. The wholly owned subsidiary of Deutsche Börse ensures that cash and securities are promptly and effectively delivered between trading parties. Clearstream Luxembourg offers an international, diverse and inclusive working environment. There are numerous good reasons to work for us: high level of responsibility at an early stage, attractive benefits and a broad variety of career opportunities.
**Your area of work**:
Clearstream is a large international financial institution offering post-trade infrastructure and securities services for the international and domestic markets worldwide.Clearstream Information Security (IS) second line of defense organization is responsible for the cyber security risk oversight program, cyber resilience, steering of IS processes, IS controls, and IS compliance activities for legal entities, branches, and representative offices in scope with direct reporting line to the corresponding executive boards.
**Your responsibilities**:
The Information Security 2LOD Senior Ass. VP will be supporting Clearstream Banking Chief Information Security Officer in assuring that material information security risks are identified, analyzed, reported, and effectively remediated by IT. In addition, he/she will play an active role ensuring that (1) controls deemed necessary for the mitigation of those risks are designed and operating effectively, and (2) applicable information security compliance requirements are defined, up-to-date, and consistently implemented. More specifically, the Senior Ass. VP will:
Support the implementation and maintenance of the information security risk oversight program, including IS control requirements based on the analysis of the threat landscape, applicable policies, standards, and regulations.
Conduct risk assessments and support reporting on material risks as part of the quarterly reporting to the executive and supervisory boards.
Complement existing risk and vulnerability assessments of planned and installed information systems to identify material vulnerabilities, risks, and protection needs.
Determine the causes of security incidents and researches, recommends, and oversee the implementation of remedial measures.
Analyze information security risk -related technical problems and provides engineering and technical recommendations for solving those problems.
Develop an understanding of Post-trade business goals and reframes information security risk oversight discussions in business terms.
Support constructively engaging with business partners regarding strengthening of security posture and improving risk profile.
Actively and professionally engage with operations and IT in conversations that drive adequate IS risk decisions.
Support awareness efforts on the information security risk implications by combining pragmatic analysis with judgment to assess business decisions.
Ensure employees and third parties understand, acknowledge, and fulfill all applicable information security policy requirements.
Support the security awareness program.
Support coaching junior colleagues.
**Your profile**:
Master's degree in computer science, network security, or business informatics.
Minimum 10 years of experience in IT security, information security risk management, or risk oversight in the financial sector.
Strong ability to convey complex IT security issues, information risks, and compliance in a manner that is easily understood, actionable and constructively challenges prevailing thoughts and processes.
Ability to effectively analyze information security risks within the context of complex IT environment and to provide value-added/actionable recommendations.
Ability to collaborate across multiple teams in a multicultural environment.
Ability to develop a full and deep understanding of the business / IT operations and related information security risks.
Experience with information security regulatory compliance and information security risk management frameworks (e.g., IS027000, COBIT, NIST, etc.)
Proficiency in written and spoken English, preferable at least basic knowledge of German and/or French.
-
Information Security Risk Assurance Officer
il y a 6 jours
Luxembourg Deutsche Börse Temps plein**Learn. Develop. Grow. But always: Share value**: Join our international team that drives positive change, united by a spirit of openness and curiosity. We empower you to have an impact and to grow - personally and professionally. With us, you work at the heart of financial systems and evolve the way markets operate. We’re excited about the future because...
-
Information Security Risk Officer
il y a 7 jours
Luxembourg Deutsche Börse Group Temps pleinTracing its origins to 1585, Deutsche Börse Group has become one of the world's leading exchange organisations and an innovative market infrastructure provider. In this role, we provide investors, financial institutions and companies access to global capital markets. By creating trust in the markets of today and tomorrow we foster growth and contribute to...
-
Information Security Officer
il y a 4 jours
Luxembourg JAO Temps pleinjao.eu Description In the context of reinforcing its operations and the implementation of ISO27001, JAO is in search for an Information Security Officer able to on-board and to develop quickly in a diverse IT eco-system. The person is foreseen to take over a series of duties associated with the ISMS management and to deliver support in the projects design...
-
Information Security Officer
il y a 2 semaines
Luxembourg Findel Airport ING Temps pleinInformation Security Officer In order to strengthen the delivery organisation, ING Luxembourg is looking for an Information Security Officer on a temporary contract bases. Job description: Your mission will be to reinforce a team of Security Officers in order to maintain the bank within its IT risk appetite and participate in the implementation of the DORA...
-
Associate Information Security Officer
il y a 5 heures
Luxembourg European Investment Bank Temps plein**This position is based at our Luxembourg headquarters and requires regular office presence.**The EIB offers you the opportunity to live and work in a truly international and multi-cultural environment. We also offer relocation support. The **EIB**, the European Union's bank, is seeking to recruit for its Group Risk & Compliance Directorate (GR&C), Office...
-
(Senior) Information Security Officer
il y a 2 semaines
Luxembourg European Investment Bank Temps pleinThe **EIB**, the European Union's bank, is seeking to recruit for its **Group Risk & Compliance Directorate (GR&C) - Office of the Group Chief Compliance Officer (GR&C-OCCO) - Group Non-Financial Risk Department (GNFR), Project Management and Information Security Division (PMI), Information Security Risk Unit (InfoSec)** at its headquarters in Luxembourg, a...
-
Information Security Officer
il y a 2 semaines
Luxembourg Business Training Luxembourg SA Temps plein30 years of experience in high-end training **Business Training’s experience is built on solid ground**: we have been providing cutting-edge ICT training sessions for about 20 years. Originally, Business Training specialized in IT technical and end-user trainings (Windows, MS Office, etc.). A few years ago, our company widened the range of its training...
-
Bank - Information Security Officer (M/F/d)
il y a 2 semaines
Luxembourg Riverty GmbH Temps plein**We are looking for an** **Information Security Manager (M/F/d)** **(unlimited, full-time) Join our team at our location in Luxembourg - flexible working conditions available** **to build the next generation fintech.** **Key Responsibilities**: - ** Requirement Management**: Stay up to date with new laws, regulations, and standards within the ICT Risk...
-
Information Security Risk
il y a 5 jours
Luxembourg Luxfactory Temps pleinLocation: Luxembourg | Contract: Permanent Key Responsibilities - Develop, maintain, and manage documentation related to the Information Security Management System (ISMS) - Harmonize and regularly update security policies and procedures to ensure organizational consistency and regulatory compliance - Participate in the risk management framework by...
-
Information Security Officer
il y a 7 jours
Luxembourg EFA Temps plein**Your responsibilities**: - Perform controls and reviews to ensure and validate conformity with defined security standards and framework NIST, ISO 27001 - Have a good knowledge of regulatory requirements (DORA, NIS ) - Manage or participate in technical projects to improve IT security - Perform IT security assessments and recommendations related to...