BRCA17278

IT Security Manager

Location

Brussel

Category:

IT Audit & Compliance

Project description:

The Digital Security Office (DSO) ensures that the IT Security risks to which the group is exposed to are tracked, treated and mitigated in line with the regulatory, business and security requirements. The DSO has its own ambitious Security Roadmap that focuses on major improvements to ensure the predefined security ambitions are effectively realized.

The customer is searching for an experienced and skilled resource to support one of the projects within the security roadmap, more specifically, the improvement and implementation of the information security management system (ISMS).


We are looking for a Security officer with experience in information security management systems (ISMS). Within the DSO department, you will be the responsible for executing the program in the organisation in line with ISO2700x:2013.

Responsibilities:

• Define or improve policies, standards, procedures and guidelines

• Prepare stakeholder communication and raise awareness around the ISMS

• Develop and integrate security procedures in the organization

• Perform risk analysis and document risk treatment plans

• Follow-up and report on the implementation and status to the management and project stakeholders

• Define & document the way DSO interacts with its stakeholders

• Work closely together with key stakeholders throughout the organization and IT

• The goal is to prepare the organization for an ISO 27001 certification.

Technical skills:

Technical skills

  • Practical experience in setting up and running ISMS programs
  • Practical experience in defining information security policies, guidelines and procedures
  • Proven experience with ISO 27001 certification tracks where you had a leading or vital role
  • Knowledge of security standards and frameworks such as ISO 27001, as well as a basic knowledge of GDPR and ITIL;

Experience

  • Minimum of 3 years experience with the implementation of information security management systems and ISO2700x:2013.

Must have certifications

  • Certified ISO27001 Lead Implementer / Lead Auditor

Certifications that are considered relevant

  • Certified ISO 27005 Risk Manager
  • Certified Information Systems Security Professional (CISSP)
  • Certified in Risk and Information Systems Control (CRISC)
  • Certified Information Security Manager (CISM)
  • Certified Information Security Auditor (CISA)

Soft skills:

Soft skills

  • Pragmatic and analytical mindset
  • Excellent English and either Dutch or French, with conversational knowledge of the other
  • Experienced with formal writing and reporting
  • Good communicator, team-oriented, motivated and strong work ethic
  • Convincing personality and ‘can do’ mindset

Contact person:

Contact name: Manuel Reyes