Chief Information Security Officer

il y a 3 semaines

belgium Thales Temps plein

Location: Tubize, Belgium

Thales people architect solutions at the heart of the defence-security continuum. Interoperable and secure information and telecommunications systems for defence, security, and civil operators, are based upon innovative use of radiocommunications, networks, and cybersecurity. We are ground breaking new digital technologies such as 4G/5G mobile communications, cryptography, cloud computing and big data for use in physical protection systems, and critical information systems.

Thales Belgium SA, Belgium competence center of Thales, is a company located on 2 sites, one in Tubize (near Brussels) and the other one in Herstal (near Liège). Thales Belgium, which employs more than 280 collaborators, is specialized in the design, development and supply of critical information systems for customers in the sectors of Defense, Security (including Cyber) and Aerospace.

Position Summary

The CISO is responsible for all aspects of information security and cyber security across all of IT including support developing, deploying and maintaining a robust security strategy with solid security policies; protocols and procedures across enterprise security architecture, security operations center, datacenter security, and network security including cloud and applications security with appropriate security measures and initiatives. This role also advises senior leaders and other stakeholders on the further development, implementation and management of a countrywide IT security infrastructure that contains appropriate control objectives for system integrity, availability, reliability, resilience, confidentiality and assurance to company, industry and international standards.

Essential Functions / Key Areas of Responsibility

  1. Identifying and prioritizing cybersecurity risks and reporting them to local CIO and EUROPE CISO.
  2. Ensure strategic alignment of the region approach to IS/IT Security is compliant with legal and regulatory requirements, Group standards and aligned with business objectives.
  3. Ensure security program & plans are in place and actions are implemented to manage the risk of adverse impacts from any external or internal attack on the region IT/IS are reduced to an acceptable level.
  4. Ensure appropriate budget and resources are allocated to support the security program at region level.
  5. Be a member of the Group Information System Security Community - sets and approves IS security policy decisions and exceptions.
  6. Ensure security incidents are coordinated and managed with the Central Security body through EUROPE CISO.
  7. Coordinate regionally under the supervision of the Cert Incident Response Activities.
  8. Gain acceptance of proposed security solutions by the various security accrediting bodies within Group CISO.
  9. Respect Group IS/IT standards and strategy.
  10. Review strategies, operational changes and projects to ensure appropriate security controls are applied.
  11. Review proposed enterprise architecture strategies and designs to ensure that new risks are not introduced into company, and to suggest changes that may increase functionality and help reduce existing risks.
  12. Maintain /Coordinate an understanding of current and emerging security threats that may affect the company now or in the future.
  13. Undertake / Coordinate forensic investigations and analysis as required on company computer assets in support of HR led investigations.
  14. Liaise with Legal in regards to export control requirements in systems and manage any e-discovery requirements that the company are required to undertake.
  15. Undertake governance responsibilities for technology based Defense regulations and policies and report the company state of compliance to the Governmental Boards in charge.
  16. Provide regular updates to the CIO and EUROPE CISO regarding achievements, issues and goals.
  17. Review and ensure the follow up of remediation plans with EUROPE CISO.
  18. Acts as the first point of contact for internal and external audits.

Minimum Requirements: Skills, Experience & Education

  • Bachelors (Masters preferred) Information Technology and/or Information Security (Degree or equivalent).
  • 5+ years of leadership experience overseeing security initiatives in a medium to large enterprise.
  • Obtained one or more of the following certifications: Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA), Global Information Assurance Certification (GIAC), ISO27001 Lead Implementer; Project Management Professional (PMP/Prince2); or other related certifications.
  • Obtained Cosmic Top Secret (CTS) Security Clearance is a huge asset.
  • Demonstrable experience of emergency preparedness, critical incident management, business continuity and disaster recovery.
  • Experienced with medium to large IT Infrastructure and/or IT security projects, e.g. firewall deployment, NAC implementation, web proxy upgrade etc.
  • Prior experience with information security framework, secure network architecture and design, cloud computing, and secure application architecture/design.
  • Proven experience of leading a multidisciplinary team.
  • Strong working knowledge of information security technologies, markets and vendors including firewall, intrusion detection, assessment and monitoring tools, encryption, certificate authority, and cloud networks.
  • Experienced in developing policies and procedures for identity and access management, security programs, security procedures, security standards, requirement definition, and project management plans.
  • Adept in creating business cases and user cases including the ramification of various system, network and application security decisions and recommendations.
  • Experience in managing IT responses to internal and external audit campaigns.
  • Articulate with strong verbal and written communication skills including technical and non-technical audiences.
  • Business proficient in English and French.

Preferred Qualifications

  • Experienced in working within a centralized/decentralized matrix business environment.
  • Knowledge of SEI's CMMI model for secure software development.
  • Broad experience of conducting risk assessments including presenting recommendations to c-suite.

At Thales we provide CAREERS and not only jobs. With Thales employing 80,000 employees in 68 countries our mobility policy enables thousands of employees each year to develop their careers at home and abroad, in their existing areas of expertise or by branching out into new fields. Together we believe that embracing flexibility is a smarter way of working. Great journeys start here, apply now

Interested?
Apply now Click on the button below to upload your profile and show your interest.

Diversity Statement
We actively support a working pattern that suits your lifestyle and helps you reach your ambitions. That means that equal opportunities, inclusion and an informal culture are integral to our success. It also means that your well-being and happiness matter to us That's why we offer you the flexibility to do what's important to you; whether that's part time hours, job sharing, remote working, or the ability to flex your start and finish times.#J-18808-Ljbffr

  • Chief Information Security Officer

    il y a 3 semaines

    belgium, belgique WhatJobs Temps plein

    Location: Tubize, BelgiumThales people architect solutions at the heart of the defence-security continuum. Interoperable and secure information and telecommunications systems for defence, security, and civil operators, are based upon innovative use of radiocommunications, networks, and cybersecurity. We are ground breaking new digital technologies such as...

  • Information Security Specialist

    il y a 3 semaines

    belgium Techwolf Temps plein

    At TechWolf, security is not just a priority. It’s the foundation of trust that gives our customers the confidence to let us power their skills intelligence, and it safeguards the intellectual property we’ve created through years of cutting-edge research and innovation. Given the critical role of Security to our business, we want to set the standard in...

  • Information Security Manager

    il y a 3 semaines

    belgium LotusBakeries Temps plein

    As Information Security Manager you will take charge of guaranteeing Lotus Bakeries' compliance with the NIS2 regulations and ISO 27001 security standards. Join us at Lotus Bakeries and embark on a thrilling journey to fortify our digital stronghold while shaping the future of information security in the food industry! You'll be the linchpin in embedding...

  • Security engineer

    il y a 3 semaines

    belgium Aikido Security Temps plein

    Company DescriptionWe're taking on the crusty global cyber market, the "no-BS" sec platform for devs.In the past, only large enterprises needed to worry about security. Today, every startup holds significant customer data, and cybersecurity has become the top concern of 75% of all CEOs.This means all developers need to ensure their platforms are secure, but...

  • Information Security Manager

    il y a 3 semaines

    belgium, belgique WhatJobs Temps plein

    As Information Security Manager you will take charge of guaranteeing Lotus Bakeries’ compliance with the NIS2 regulations and ISO 27001 security standards. Join us at Lotus Bakeries and embark on a thrilling journey to fortify our digital stronghold while shaping the future of information security in the food industry! Responsibilities You'll be the...

  • Lead Auditor Information Security

    il y a 3 semaines

    belgium TN Belgium Temps plein

    Ben je gepassioneerd door Information Security ?Kent ISO27001 geen geheimen voor jou ?Vinçotte zoekt een Lead Auditor Information Security !Als Auditor Information Security ga je aan de slag bij onze klanten in verschillende sectoren, zo hebben we onze expertises en organisatie uitgebouwd op vlak van gebouwen, zoals ziekenhuizen, rustoorden en scholen maar...

  • Lead Auditor Information Security

    il y a 3 semaines

    belgium SHV Group Temps plein

    Als Lead Auditor Information Security (M/V/X) kom je terecht in een team van auditoren, met verschillende expertises, dat zich elke dag inzet voor een steeds veiligere & efficiëntere samenleving. We zijn actief bij verschillende types klanten, zo hebben we onze expertise en organisatie uitgebouwd op vlak van zowel openbare als residentiële gebouwen, maar...

  • Lead Auditor Information Security

    il y a 3 semaines

    belgium Vinçotte Temps plein

    Korte introductieAls Lead Auditor Information Security (M/V/X) kom je terecht in een team van auditoren, met verschillende expertises, dat zich elke dag inzet voor een steeds veiligere & efficiëntere samenleving. We zijn actief bij verschillende types klanten, zo hebben we onze expertise en organisatie uitgebouwd op vlak van zowel openbare als residentiele...

  • Chief Marketing Officer

    il y a 3 semaines

    belgium, belgique WhatJobs Temps plein

    This range is provided by Coinhako. Your actual pay will be based on your skills and experience — talk with your recruiter to learn more. Base pay range $200,000.00/yr - $700,000.00/yr Company Description Coinhako, founded in 2014, is a trusted provider of on-and-off ramp services for cryptocurrencies for retail, high net worth, and institutional markets...

  • IT Security Officer/ Belgium

    il y a 3 semaines

    belgium Gemmaone Temps plein

    Temporary employment: PROJECT-BASED CONTRACTYour role:Review, propose changes, and approve Requests for Changes (RFCs) for classified Communication and Information Systems (CCISs).Conduct IT security inspections to ensure compliance with the defined security posture.Actively participate in change management and serve on the Change Control Board for...

  • Lead Auditor Information Security

    il y a 3 semaines

    belgie, belgium CareerWallet Temps plein

    Als Lead Auditor Information Security (M/V/X) kom je terecht in een team van auditoren, met verschillende expertises, dat zich elke dag inzet voor een steeds veiligere & efficiëntere samenleving. We zijn actief bij verschillende types klanten, zo hebben we onze expertise en organisatie uitgebouwd op vlak van zowel openbare als residentiele gebouwen, maar...

  • Lead Auditor Information Security

    il y a 3 semaines

    belgie, belgium Vinçotte Temps plein

    Als Lead Auditor Information Security (M/V/X) kom je terecht in een team van auditoren, met verschillende expertises, dat zich elke dag inzet voor een steeds veiligere & efficiëntere samenleving. We zijn actief bij verschillende types klanten, zo hebben we onze expertise en organisatie uitgebouwd op vlak van zowel openbare als residentiele gebouwen, maar...

  • Lead Auditor Information Security

    il y a 3 semaines

    vlaanderen, belgium Vinçotte Temps plein

    Korte introductieAls Lead Auditor Information Security (M/V/X) kom je terecht in een team van auditoren, met verschillende expertises, dat zich elke dag inzet voor een steeds veiligere & efficiëntere samenleving. We zijn actief bij verschillende types klanten, zo hebben we onze expertise en organisatie uitgebouwd op vlak van zowel openbare als residentiele...

  • Cybersecurity Governance or Risk Officer

    il y a 3 semaines

    belgium SYNCTIV Temps plein

    About the RoleAs a Cybersecurity Governance or Risk Officer, you will play a key role in ensuring that our client's cybersecurity policies, risk management frameworks, and compliance measures align with regulatory requirements such as NIS2, GDPR, and ISO 27001. Reporting to the Chief Information Security Officer (CISO), you will be responsible for driving...

  • Responsable de Sécurité des systèmes d'information RSSI-CISO

    il y a 3 semaines

    belgium CHU Saint-Pierre Temps plein

    Le CHU Saint-Pierre est un hôpital public et universitaire de référence, offrant des soins de grande qualité accessibles à tous.Dans ce cadre, il relève quotidiennement les défis de la santé publique tout en déclinant son caractère universitaire via une implication active dans l’enseignement et la recherche.Nous recherchons un Chief Information...

  • Lead Auditor Information Security

    il y a 3 semaines

    belgium Vinçotte Temps plein

    Description de la sociétéEn tant que Lead Auditor Information Security (M/F/X), vous rejoindrez une équipe d'auditeurs, avec différents domaines d'expertise, qui travaille chaque jour pour une société toujours plus sûre et plus efficace. Nous sommes actifs auprès de différents types de clients, nous avons donc développé notre expertise et notre...

  • Lead Auditor Information Security

    il y a 3 semaines

    belgium SHV Group Temps plein

    En tant que Lead Auditor Information Security (M/F/X), vous rejoindrez une équipe d’auditeurs, avec différents domaines d’expertise, qui travaille chaque jour pour une société toujours plus sûre et plus efficace. Nous sommes actifs auprès de différents types de clients, nous avons donc développé notre expertise et notre organisation dans le...

  • IT Security Consultant

    il y a 3 semaines

    belgium Projective Temps plein

    Are you an Information Security Officer, IT Risk Officer, or IT Auditor eager to support our clients in managing IT risks?Do you want to make a significant impact at various financial institutions by managing both the run & change of their IT GRC?Then keep on reading and find out more about the role of IT Security Consultant at Projective Group in Belgium...

  • Chief Technology Officer

    il y a 3 semaines

    belgium, belgique WhatJobs Temps plein

    Direct message the job poster from Iopa Solutions Are you a high-performing technology leader with deep expertise in private equity, private debt, and banking technology ? Do you thrive in a fast-growth, expansionary environment , scaling teams and leading product innovation? If so, this is a unique opportunity to shape the future of a cutting-edge...

  • Lead Auditor Information Security

    il y a 3 semaines

    belgie, belgium CareerWallet Temps plein

    En tant que Lead Auditor Information Security (M/F/X), vous rejoindrez une équipe d'auditeurs, avec différents domaines d'expertise, qui travaille chaque jour pour une société toujours plus sûre et plus efficace. Nous sommes actifs auprès de différents types de clients, nous avons donc développé notre expertise et notre organisation dans le domaine...