Information Security Manager
Specialism / Function
Full Time Employment
ABOUT THE ROLE:
Grant Thornton Luxembourg is currently seeking an Information Security Manager (m/f).
Working at Grant Thornton Luxembourg is an efficient opportunity to develop your potential within human-sized team in the heart of a multicultural and international growing group while respecting your work / life balance.
The Information Security Manager is a customer facing advisory role. She/he oversees the functioning of customer’s information security measures, plans, designs, and implements it to incorporate the information security controls that are designed to meet the organisation's objective and mission.
Within the security advisory team, he/she provides continuous support to the newly appointed team members and trains them. He/she delegates and assigns the work to the other members and reviews their work to ensure tis quality and relevance. He/she supervises the team and may be involved in the hiring and training procedures. He/she keeps a track on the operational budget and makes sure that the work is performed as per the assigned budget.
To get a better idea, mentioned below are a few points that will illustrate the key responsibilities that need to be handled by an information security manager in any organisation:
- To assess, enhance and align the Information Security Management System of customers including policies, processes, practices, roles and responsibilities.
- To propose and implement a realistic approach of a security strategy that could lead to a certification schedule and process
- To ensure that all the relevant policies and procedures related to information security are adequate.
- Develop, update, maintain, and implement Information Security strategy and plans.
- Define and deploy information security awareness programs
- Define and implement an ICT/IS risk management framework.
- Developing security reports and dashboards
This professional works towards ensuring continued compliance with all the current laws, regulations, directives and contractual requirements.
SKILLS AND ATTRIBUTES:
The information security manager should be able to explain complex ideas in a concise manner. He/she should have good judgmental and decision-making skills. Excellent analytical and interpretation skills would be of great help. Excellent communication skills and good presentation skills would be beneficial.
- Excellent level of English (French and/or German is a plus);
- Master’s degree in Information Security or Computer Science;
- Three years’ experience in similar role;
- Demonstrated ability to understand legal, technical and governance topics;
- Experience completing multiple projects simultaneously on time and with minimal direct supervision;
- Experience in Information Security Risk Management;
- Experience in or with information security references like ISO2700x norms;
- Experience in Financial sector regulations at European or local level is a plus;
- Hold IS certifications such as CISSP, CISM, ISO27001 Lead Implementer is a plus.
Grant Thornton is a collaborative, entrepreneurial firm on the move! As part of a dynamic, global organiSation of more than 58,000 people serving clients in more than 138 countries, we have the agility and focus it takes to be a leader.
Here in Luxembourg, 270 professional staff and 21 partners are offering high-quality assurance, tax and advisory services to clients that range from private individuals to corporations, banks and public institutions.
HOW TO APPLY:
Please send your CV with the reference Information Security Manager by email at email@example.com.
All applications will be treated as strictly confidential.
All personal data that will be collected from candidates as part of the recruitment process, will be processed in compliance with the General Data Protection Regulation (GDPR) (Regulation (EU) 2016/679), (Enforcement date: 25 May 2018).
This among others means that they will only be processed based on one of the possible legal basis (as per Art. 6 of the GDPR), be it with the candidates’ consent or on the basis of an employment contract. This also means that personal data will not be retained for more than required by the GDPR or by applicable Luxembourg laws i.e. beyond completion of the recruitment process.