Hays is looking for an Information Security Officer for one of its clients based in the south of Luxembourg.

• Annual gross salary up to 90 000€
• Up to 2 remote days per week
• Permanent contract
• French and English fluent are mandatory

Your main missions:

• You’ll be the guardian of our digital world. From enforcing security policies to running regular checks, your work will directly protect the company and give you the satisfaction of knowing your impact is real and measurable.
• You’ll never stop learning. Between penetration tests, vulnerability scans, and staying ahead of threats, you’ll constantly sharpen your skills and stay on the cutting edge of cybersecurity.
• You’ll have a seat at the table. You’ll work closely with the SOC, business teams, and leadership. Your voice will matter, and your insights will shape how we grow securely.
• You’ll turn data into decisions. By defining and tracking KPIs, you’ll help us see what’s working, what’s not, and where we go next. You’ll be the one turning complexity into clarity.
• You’ll be a builder, not just a fixer. You won’t just react to issues. You’ll proactively design secure solutions for new projects, from authentication to encryption, and everything in between.
• You’ll be the go-to expert. Whether it’s audits, compliance (ISO 2700X, GDPR, DORA…), or risk analysis, your expertise will be trusted and valued across the company.
• You’ll own your domain. From managing digital certificates to securing exchanges with clients and partners, you’ll have full control and visibility over key security processes.
• You’ll be part of the action. When incidents happen, you’ll be at the heart of the response ; analyzing, communicating, and helping us bounce back stronger.
• You’ll stay ahead of the curve. With a dedicated focus on threat and emerging technologies, you’ll always be one step ahead and we’ll support you in staying there.
• You’ll make security visible. Your dashboards and reports will help the CISO and stakeholders see the big picture and your work will never go unnoticed.

Your profile :

• Master’s degree (or equivalent Bac+4/5) in Cybersecurity, Computer Science, or Information Systems.
• At least 5 years of experience in a similar role.
• You have proven experience in DLP
• You have proven experience managing IAM topics
• With an operational background (network, pen-test…), you're now focusing on GRC

Some more insights about your technical environment :

• Security frameworks (ISO 2700X, NIST, CIS Controls) and regulatory requirements (GDPR, DORA, CSSF circulars)
• Security technologies and tools: SIEM, EDR, MFA, IAM/PAM, DLP, SonarQube, Nexus.

Please apply and we will discuss together about the next step of your career!