(Senior) Information Security Officer
LU - Luxembourg
Add to My Favorite Jobs
The EIB, the European Union's bank, is seeking to recruit for its Corporate Services (CS) – Information Technology (IT) – IT Security Unit (SEC) ), at its headquarters in Luxembourg, a:
(Senior) Information Security Officer
This is a full-time position at grade 5/6
The term of this contract will be 4 years
The EIB offers fixed-term contracts of up to a maximum of 6 years, according to business needs, with a possibility to convert to a permanent contract, subject to organisational requirements and individual performance.
Panel interviews are anticipated for and of May/ beginning of June 2019
You will be responsible for leading IT security monitoring and control activities within the EIB Group. The overall purpose is to prevent or minimise business damage to the EIB Group in terms of IT security breaches.
Reporting to the Head of IT Security Unit, you will closely cooperate with counterparties from Information Management & Procurement and Risk Management to ensure oversight and assurance functions in EIB’s second and third line of defence.
Prepare and run projects that lead to an improved IT security posture of the EIB Group, such as the review of existing technical security controls, their architecture, areas for improvement, etc.
Evaluate security weaknesses and propose technical and procedural initiatives for addressing areas with identified vulnerabilities, in close collaboration with Internal Audit and other partners. Monitor and implement compliance with the Bank’s security policies, standards and procedures.
Build sound business relationships across the Bank to enable a deep understanding and alignment with the growing business needs and risk appetite for the protection of our information assets and collect information on industry developments through external contacts, such as security related professional bodies and experts.
Operate and report within the information security governance structure and related processes in the Bank. Ensure that IT security controls using standard methodologies and metrics are implemented and integrated into the Bank’s Risk Management, Business Continuity and Crisis Management governance structures and processes.
Monitor external sources of IT Security intelligence and handle the corresponding alerts and communications within the Bank. Ensure overall effective operation of the external Security Operations Centre.
University level education, relevant post-graduate studies in field of risk management, IT or information management would be considered as a strong advantage.
Minimum 5 years relevant experience with proven track record in information security implementation, information security architecture, or IT security operations, preferably in a financial services domain
Good knowledge of ISO/IEC27000 standard series
Experience in running major security-related projects
Deep knowledge of security architecture, including perimeter devices, endpoint protection, operating systems, strong authentication solutions, web security
Knowledge sharing skills, including presentations and conducting workshops, drafting of documentation
Excellent verbal and written English and good command of French (*). Knowledge of another EU language(s) would be an advantage.
Achievement Drive: Continually keeps an eye on performance, focusing on improving it, showing drive and determination to meet short and long-term goals
Change Orientation: Adapts to differences and changes in the environment; takes a flexible approach to reach outcomes
Collaboration: Works cooperatively as part of a team; works collaboratively with peers across organisational boundaries based on a genuine interest in and understanding of others and their individual perspectives and concerns
Organisational Commitment: Willing to commit to an organisation whose mission is to support Europe and is open to diversity, and to align her/his own behaviour with the organisation’s needs and intrinsic values, acting with integrity in ways that promote the organisation’s mission, policies and rules.
(*) There may be certain flexibility on this requirement, but limited to particularly suitable candidates who may not yet be proficient in French. If selected, such candidates will be hired on the condition that they build up rapidly knowledge of French and accept that their future career in the EIB may be subject to the attainment of sufficient proficiency in both of the Bank's working languages
We are an equal opportunity employer, who believes that diversity is good for our people and our business. As such, we promote the inclusion of suitably qualified and experienced staff without regard to their gender, age, racial or ethnic origin, religion or beliefs, sexual orientation/identity, or disability (*).
The level of functions in the job vacancy is only indicative and will be adjusted accordingly taking into account, among other things, the business need, as well as the selected candidate’s experience and expertise
Deadline for applications: 18th April 2019
(*). We particularly welcome applications from women and persons with disabilities.