Function:
· Establish and enforce robust cybersecurity policies, standards, and procedures to minimize risks and ensure adherence to relevant laws and regulations.
· Identify, evaluate, and prioritize cybersecurity risks, developing effective strategies to manage and mitigate these risks efficiently.
· Lead the development and implementation of an incident response plan, overseeing responses to security incidents and conducting thorough post-incident analyses to enhance resilience.
· Drive ongoing security awareness initiatives, delivering comprehensive training programs to educate employees on the latest cybersecurity threats and best practices.
· Oversee the implementation and management of a proactive vulnerability management program to identify, assess, and address potential security vulnerabilities in software and systems.
· Conduct routine security audits and assessments to maintain compliance with security policies and identify areas for enhancement.
· Evaluate and address cybersecurity risks associated with third-party vendors and partners.
· Manage and oversee security monitoring tools to detect and respond to security incidents promptly, collaborating closely with the Group's Cyber Security Incident Response Team (CSIRT).
· Coordinate actions during cyber security incidents and crises, ensuring timely service restoration.
· Apply the Group's Cyber Security reference framework, integrating entity-specific business needs and regulatory requirements into the framework.
· Serve as a local CISO for the group, collaborating closely with the Group's cybersecurity department.
· Provide cyber security expertise and support to IT teams and IT production.
· Perform internal controls on IT production and suppliers to ensure the correct implementation and application of security measures, safeguarding the entity's customer data and sensitive IT assets.
· Collaborate with the IT department and Chief Information Officer (CIO) to embed security practices into the development lifecycle and foster a culture of secure coding.
· Partner with the entity's procurement and legal departments to incorporate information security obligations into agreements with third parties.
· Ensure integration of security aspects into the company's project management process by introducing appropriate information security policies and practices.
Profile:
· Bachelor's or master's degree in computer science, cybersecurity, software engineering, or a related field. An MBA or equivalent business experience is advantageous.
· Demonstrated experience as an Information Security Manager or CISO in a senior information security leadership capacity within the IT sector.
· Thorough understanding of cybersecurity technologies, protocols, and best practices.
· Industry certifications such as CISSP, CISM, or equivalent are highly desirable.
· Strong comprehension of cybersecurity laws, regulations, and industry best practices.
· Proficient knowledge of software development processes and methodologies.
· Familiarity with financial markets, regulations, and industry-specific technology trends is beneficial.
· Exceptional leadership and team management abilities, coupled with a strong strategic mindset and organizational skills.
· Determination in achieving objectives and maintaining high ethical standards.
· Fluency in both French and English (written and spoken).
· Effective written and oral communication skills.
Additional Information:
• Start Date: ASAP
• Contract: Mission or Permanent Contract
• Location: Liège, Belgium