Join the IT team of a big company has a IT Security Manager
Hays Luxembourg is searching for one of his client an IT security Manager.
- Provide leadership, vision and direction for innovative problem solving and anticipate future needs in relation to information security industry trends; - Contributes to the 2/3-year roadmaps and plan regarding IT security and risks. - Lead the Security Community - Hire, onboard, and train new staff and develop team members skills and expertise - Managing team budget and activities - Integrate security into system development processes, and procedures, and providing technical security guidance for IT initiatives, including procurements, secure system architecture, and evaluation of security controls, configuration and maintenance. - Interact with the IT department to convey Security Information and ensure it is addressed from a technical aspect if there is requirement. - Drive Security project activities to ensure requirements and schedules are met - Work closely with the Information Security team to define Security standards and guidelines - Influence and recommend IT Security best practices on solutions being delivered by IT. Work with IT Architecture team to develop IT security roadmaps to drive efficiency and reduce service impacts. - Develop and manage IT security awareness training programs; - Build a culture of excellence in technical security threat management and incident response - Work with and educate IT staff to minimise risk - Continuously identify, assess, measure and monitor information technology risk by performing hands-on risk assessments - Understand relevant regulations and work closely with other colleagues (e.g. internal audit and DPO) to agree the requirement for IT - Provide support for internal and external security reviews and audits, including controls recommendations to remediate negative security findings; - Manage IT audit findings and work with IT teams to define remediation plan. - Acts as a lead participant in the resolution of problems concerning security violations
● Solid understanding of security best practices and frameworks such as frameworks, such as ISO/IEC 27001, NIST and OWASP; ● Experienced in Application architecture and security management; ● Knowledge in Privileged access management technologies; ● Project management skills and solution support for security transformation/implementation programs; ● Excellent analytical and problem-solving abilities to identify and fix security risks. ● Excellent communication and presentation skills; ● Strong experience in various technologies and systems; ● Have a programming language background; ● Good team working skills to develop security solutions in collaboration with other people. ● Languages ○ French: business fluent, verbal and written; ○ English: business fluent, verbal and written.
● Have one of those certifications: ○ Certified Information Systems Security Professional (CISSP) by (ISC)² ○ Certified Information Systems Analyst (CISA) by ISACA ○ Cybersecurity Analyst Professional Certificate by IBM ○ Certified Information Security Manager by ISACA ● Cloud security and architecture certifications is a plus (such as AZ-500, AZ-303/304, CCSP or any other related). #1341768
To be defined
Talk to a consultant
Talk to Firmin Kenhale, the specialist consultant managing this position, located in Luxembourg