Information Security Manager

il y a 24 heures

Luxembourg China Merchants Bank Temps plein

H- Posted by
- Hongyi Xu- Recruteur Company: China Merchants Bank Luxembourg China Merchants Bank Co., Ltd., founded in 1987, is China’s first joint-stock commercial bank which has been ranked among China’s top commercial banks for many consecutive years. CMB set up a branch that provides commercial banking services in Luxembourg in March 2015 and acts as the gateway and regional headquarter of CMB group in Continental Europe. In May 2021, China Merchants Bank Co., Ltd., has the subsidies-China Merchants Bank (Europe) S.A. in Luxembourg.

**Responsibilities**:

- Developing and implementing policies and frameworks for IT security and risk management.
- Monitoring and managing the IT systems to ensure that they are secure.
- Conducting ICT and Cybersecurity Risk-Self Assessment, in line with both EU regulation and HO policies.
- Ensuring that IT control framework is aligned to the CMB HO framework when relevant.
- Identifying potential regulatory and non-regulatory IT risks through thorough and ongoing risk assessments (such as the possibility of system failure or data loss).
- Assisting in finding practical and cost-effective solutions to identified or revealed security and risk issues.
- Building and maintaining strong and effective working relationships and effective means of communication with other relevant functions such as IT, RM, LC, OP departments.
- Working closely together with internal and external auditors on ICT Risk topics.
- Design an extensive training program and organize regular training targeted to different functions within the Bank.
- Implement a set of Key Risk Indicators (KRI) and defining metrics to regularly measure control effectiveness.
- Providing regular reporting on the ICT risk exposure, mitigating efforts, key milestones, KRIs, escalation of operational events and breaches.
- Actively engaging in end-to-end risk remediation planning, resolution, and monitoring activities.
- Serve as the point of contact for all ICT Risk Management matters.
- Monitoring key trends in the regulatory environment and best market practices (including implementation of DORA, review of real case studies, following the latest industry best practices)
- Raising awareness: influencing behavior to reduce risk and foster a strong technology risk management culture throughout the enterprise.

**Profile**:

- Master's degree (information technology, computer science, information security or a related field).
- At least 6 years of professional working experience in ICT Risk Management or in IT.
- Familiar with applicable banking regulations and how they impact the information technology (IT) department.
- Strong interpersonal skills and the ability to develop effective trustworthy relationships with the IT, RM, LC departments and business stakeholders.
- Staying aware of Information Security current affairs, business continuity, data management, security and encryption, and vulnerability analysis and audit.
- Fluent in English and Chinese. Excellent communication skills, both written and verbal to be able to articulate complex IT risks in simple business terms.
- Any relevant certifications is a plus (CISSP, CISA, CRISC).
- Audit or controls background, Big Four experience a plus.

**Disclaimer**:
The preceding description is not designed to be a complete list of all duties and responsibilities.

  • Information Security Manager

    il y a 1 semaine

    Luxembourg Next Gate Tech Temps plein

    **What You Will Do**: In this role, you will be responsible for developing and implementing our organization's information security strategy, as well as ensuring compliance with relevant laws, regulations, and industry standards. You will work closely with stakeholders across the organization to identify and mitigate security risks, and be responsible for...

  • Security Incident Management Consultant

    il y a 3 jours

    Luxembourg Base Cyber Security Temps plein

    Are you an experienced incident response / incident handling professional? Ready for taking on a leading role, setting up and running a new layer of incident response capability to the security maturity of a Security Operations Center (SOC) servicing a global business via managed security services? Get the chance to contribute at high level by taking on a...

  • Information Security Oversight Manager

    il y a 3 jours

    Luxembourg PayPal Temps plein

    At PayPal (NASDAQ: PYPL), we believe that every person has the right to participate fully in the global economy. Our mission is to democratize financial services to ensure that everyone, regardless of background or economic standing, has access to affordable, convenient, and secure products and services to take control of their financial lives. Job...

  • Information Security Officer

    il y a 6 jours

    Luxembourg, Luxembourg Luxair Temps plein

    For our department IT Security within General Services, we are looking for a (an):Information Security Officer (m/f/x)Description:As Information Security Officer you will activelycontribute to maintaining and strengthening Luxair group's information securityposture.Drivenby a strong interest in cybersecurity, you will actively support the Head of...

  • Information Security Officer

    il y a 1 semaine

    Luxembourg EFA Temps plein

    **Your responsibilities**: - Perform controls and reviews to ensure and validate conformity with defined security standards and framework NIST, ISO 27001 - Have a good knowledge of regulatory requirements (DORA, NIS ) - Manage or participate in technical projects to improve IT security - Perform IT security assessments and recommendations related to...

  • Information Security Officer

    il y a 1 semaine

    Luxembourg Findel Airport Quintet Private Bank Temps plein

    **Purpose of the Job**: **Quintet Private Bank** is a leading private bank in the wealth management sector; we are committed to our clients and their families, and pride ourselves on our personalised service based on a deep understanding of what clients want to achieve. We are a bank headquartered in Luxembourg, with branches in Denmark, Germany, Netherlands...

  • Vp Information Security Manager

    il y a 24 heures

    Luxembourg JPMorgan Chase & Co Temps plein

    **JOB DESCRIPTION** Our Information Security professionals are passionate about information security and control solutions for computing environments. While collaborating with a world-class team of technology experts, you'll partner with one or more disciplines, lines of business, regions or locations to respond to evolving business requirements and emerging...

  • Associate Information Security Officer

    il y a 3 jours

    Luxembourg European Investment Bank Temps plein

    **This position is based at our Luxembourg headquarters and requires regular office presence.**The EIB offers you the opportunity to live and work in a truly international and multi-cultural environment. We also offer relocation support. The **EIB**, the European Union's bank, is seeking to recruit for its Group Risk & Compliance Directorate (GR&C), Office...

  • Information Security, Intern

    il y a 4 jours

    Luxembourg Arendt & Medernach Temps plein

    Arendt & Medernach is the leading independent business law firm in Luxembourg with over 800 professionals. The firm’s international team of more than 450 legal experts represents Luxembourg and foreign clients in all areas of Luxembourg business law from its main office in Luxembourg and representative offices in Frankfurt, Hong Kong, London, New York, and...

  • (Senior) Information Security Officer

    il y a 2 semaines

    Luxembourg European Investment Bank Temps plein

    The **EIB**, the European Union's bank, is seeking to recruit for its **Group Risk & Compliance Directorate (GR&C) - Office of the Group Chief Compliance Officer (GR&C-OCCO) - Group Non-Financial Risk Department (GNFR), Project Management and Information Security Division (PMI), Information Security Risk Unit (InfoSec)** at its headquarters in Luxembourg, a...