Chief Information Security Officer

Chief Information Security Officer

We are looking for a CISO to define and monitor IT security-related policies and procedures as well as the company’s IT security strategy. Reporting directly to the CTO and to the Management Board, you will design and approve both security systems, policies and procedures and system access and data retention policies, evaluate IT security of suppliers and partners, evaluate risk exposure, manage audits and vulnerability checks, handle documentation and reports as well as our BCP/DRP. You will also coordinate with other departments and units as well as handle relations with the company’s and its clients’ and suppliers’ auditors.

With us you will…

  • Design and approve security systems, policies and procedures, such as development policies, system hardening procedures, deployment procedures, network configuration policies
  • Design and approve system access policies / need-to-know, data retention policies and strategies to enforce them
  • Evaluate IT security of suppliers as part of the onboarding due-diligence and continuous monitoring
  • Evaluate and monitor risk exposure create action plan to mitigate risk
  • Schedule and monitor vulnerability checks and security audits
  • Follow-up with test reports and security incidents and create reports and action plans
  • Create documentation and organise trainings for overall IT security awareness
  • Define, refine, and test BCP/DRP
  • Create necessary documentation for internal, external and client auditors
  • Communicate with all levels of the organization, internal, cross-functional and external, and keep stakeholders up to date on project status, acting as a single source of project information
  • Continuously research new technologies and methods that will benefit the department, the company and its clients

What we expect from you…

  • Educational background in IT and at least 5 years relevant experience
  • Solid expertise with systems and infrastructure security design and architecture, access and data management strategies, vulnerability checks and security audits
  • Knowledge of financial industry IT regulation (processes and architecture, reporting, outsourcing, cloud …), audit procedures and related requirements
  • Documentation and drafting skills
  • To be at ease with partners’, suppliers’ and other stakeholders’ relationship management, audit as well as goals and KPI definition
  • Good interpersonal skillset and team player mindset to facilitate relations with other departments
  • A high interest in the FinTech sector, a passion for digital innovation and new technologies
  • A genuine desire to work in a fast-paced start-up company

In return you will get…

  • A key position in one of the fastest-growing FinTech companies in Luxembourg, enabling you to be a part of the build-up of a new layer of products and platforms running on a powerful infrastructure that are already contributing substantially to the financial industry’s digital evolution
  • An attractive salary package that matches with your role and responsibilities
  • Flexible working hours with work from home opportunity
  • The opportunity to be part of a multicultural and startup-minded team
  • A nice place to work: spacious and modern offices located in the Leudelange business district close to Luxembourg-City with easy access by bus or car
Information
Category:

Open position

Date:

July 24, 2019

Tags:

Open position