Umicore - IT Security Risk and Compliance Manager
il y a 2 semaines
About our Business Supporting Functions (IT and others) A global organization. It's not just those in our industrial sites and technical centres that are vital to Umicore's growth. Across our business supporting functions we ensure that we continue to grow and evolve - whether it's by making sure our decisions are commercially viable, enhancing our reputation, building new customer relationships or finding the right people who can build on what we've already achieved. The variety of our work means we cannot stand still. We need to find new ways to do things, discover new solutions and develop new ideas. Which is where you come in. What you will be doing The IT Security Risk and Compliance Manager is responsible for driving on a daily basis the Umicore Information and Security Management System (ISMS) in compliance with the ISO/IEC 27001 standard. He/she ensures the quality and consistency of the Umicore ISMS, manages the different processes tracked within the ISMS and reports on the performance of the ISMS. In the context of the ISMS, the IT Security Risk and Compliance Manager is responsible for leading and maturing the risk management processes for IT/Information Security, as well as actively raising the adherence to the Umicore IT Security policy framework and initiating and leading the efforts needed to be compliant with IT Security standards as defined by our customers or regulatory instances. The IT Security Risk and Compliance Manager performs these roles in close collaboration with the CISO, the IT Security team and all operational and regional teams within the Information Systems department (IS), Corporate Security and other Corporate departments & Sof's and Business ISMS Managers. The IT Security Risk and Compliance Manager can be located in Brussels or Hoboken and reports to the Senior Manager IT License & Asset - IT Process Improvement. Responsibilities Information Security Management System (ISMS) Drive the Umicore ISMS in compliance with the ISO/IEC 27001 standard, according to defined scope and objectives Define, supervise and contribute to recurrent ISMS activities: e.g. ISMS Activity Calendar Plan, prepare and conduct ISMS governance meetings on tactical level (ISMS Board) and operational level (ISMS Review) Monitor open actions: e.g. Gap Tracker and Risk Treatment Register Report on ISMS performance (e.g. ISMS Dashboard) and escalation matters to relevant governance bodies and obtain required outputs such as approvals, further escalations and actions to follow up. Define, drive and contribute to continual improvements Select and implement fit-for-purpose tools improving the effectiveness of the ISMS Define, manage and contribute to ISMS scope extensions in close collaboration with BU ISMS Managers Coordinate Internal and External Audit activities, and process outcome Communicate about the ISMS to relevant stakeholders across Umicore Act as sounding board for BU ISMS Managers Risk Management Organise, conduct or periodically review Risk Assessments according to the ISMS Risk Management Methodology and ensure strict consistency across the different Risk Assessments Support and challenge Risk Owners in identifying risks and defining risk treatment actions. Update and monitor the Risk Assessment files and the Risk Treatment Register and other documentation (e.g. evidences) Further mature the risk management processes on operational and tactical level for IT/Information Security, and support the CIO/CISO on strategic level Compliance Management Manage the IT Security policy framework Ensure IT Security policies reflect IT Security standards as defined by customers and regulatory instances Collect and propose potential policy amendments Align with relevant stakeholders about these changes and submit them for approval to the relevant governance bodies Lead the periodic review of IT Security policies Communicate about the IT Security policies and related updates Inspire the IS organization and beyond to strive to adhere to the IT Security policies. This includes raising security awareness where needed. Measure, analyse and report through (self-)assessments on the level of adherence to the IT Security Policies Support and challenge IT Asset Owners/Managers and Control Owners in identifying gaps and corrective actions as well as support them in designing and implementing adequate controls. Update and monitor the Gap Tracker including exceptions Fulfil IT security questionnaires on request of customers or business partners Contribute to assess the IT security posture of third parties Watch for and assess IT Security standards (e.g. NIS2, Tisax, ...) and PII legislations (e.g. GDPR, Pipl, Pipa, ...) and as a result initiate appropriate actions/projects to ensure compliance Who we are looking for You hold a Master degree You have at least: 10 years of experience in IT (Security) 5 years of experience in international and global organizations 5 years of management experience in a management position or as a senior Project Manager 3 years of experience in security risk assessments, risk management and security controls. You have strong analytical and reporting skills You have strong oral and written skills to translate complex risk requirements. You are disciplined and methodological in your way of working You have strong planning and coordination skills You have a mature personality with excellent interpersonal skills You are able to establish credibility with senior stakeholders You have good presentation skills You have knowledge and understanding of: IT (networking, infrastructure layer, application layer, etc.) and IT Security. IT (Security) operations and processes. You have strong knowledge and understanding of : Information Security standards (e.g. ISO 27001, Tisax) Pii legislations (e.g. GDPR) Risk Management Frameworks MS office products You are fluent in writing and speaking in English You obtained professional certifications such as ISO27001 Lead Implementer, CISM, CRISC , or equivalent. You keep yourself up-to-date on latest cyber and information security trends and threats What we offer We aim to lead the way. Not just for our customers, but for our employees too. That is why we strive to create a collaborative environment in which we can all succeed, and a culture through which we can all share ideas, develop our expertise and advance our careers. As you would expect from a world-leading organization, we will also reward your contribution with a competitive salary and benefits. With all this and more, imagine what you could do?
-
Umicore - Project Manager IT
il y a 2 semaines
Bruxelles, Belgique Umicore Temps pleinOver Umicore Vermindering van schadelijke voertuigemissies. De auto's van de toekomst van energie voorzien. Een nieuw leven geven aan gebruikte metalen. Wij zijn het toonaangevende bedrijf voor circulaire materiaaltechnologie dat zijn missie vervult om materialen te creëren voor een beter leven. Met zulke ambities, stel je voor wat jij zou kunnen...
-
Umicore - Global Information Security & Infrastructure Manager
il y a 2 semaines
Bruxelles, Belgique Umicore Temps pleinOver Umicore Vermindering van schadelijke voertuigemissies. De auto's van de toekomst van energie voorzien. Een nieuw leven geven aan gebruikte metalen. Wij zijn het toonaangevende bedrijf voor circulaire materiaaltechnologie dat zijn missie vervult om materialen te creëren voor een beter leven. Met zulke ambities, stel je voor wat jij zou kunnen...
-
IT Security Project Manager
il y a 6 jours
Bruxelles Anderlecht, Belgique Ypto NV Temps pleinThe primary role of the Project Manager is to work closely with customers to drive the successful delivery of IT projects, particularly around the newer IT Security Technologies. The Project Manager will facilitate the management of scope for the customer’s requirements, plan implementations and deliver to the planned scope and budget. **Key...
-
IT Risk Expert
il y a 4 semaines
Bruxelles Etterbeek, Belgique Degroof Petercam Temps pleinLocatie: **Bank Degroof Petercam SA** *** **Belgium** - Rue De L'Industrie 44, - 1040 Brussels Context Based in our offices in Brussels, the Information Risk Manager fulfills a second line control function regarding Information Security and IT Risk within the Group. She/He reports to the Head of ORM in the Operational Risk Management department. Your...
-
IT Asset Manager
il y a 4 semaines
Bruxelles Anderlecht, Belgique Ypto NV Temps plein**GOAL** Optimize the management of IT assets to support business objectives, minimize risks and costs, ensure compliance while fostering a culture of continuous improvement and innovation. Oversee the setting up and management of a complete "single source of truth" database of all IT assets within our organization. At YPTO the ServiceNow ITAM module will...
-
IT Asset Manager
il y a 4 semaines
Bruxelles, Belgique Ypto Temps pleinGOAL Optimize the management of IT assets to support business objectives, minimize risks and costs, ensure compliance while fostering a culture of continuous improvement and innovation. Oversee the setting up and management of a complete "single source of truth" database of all IT assets within our organization. At YPTO the ServiceNow ITAM module will be...
-
Umicore - Data Solutions Architect and Manager
il y a 2 semaines
Bruxelles, Belgique Umicore Temps pleinAbout Umicore Reducing harmful vehicle emissions. Giving new life to used metals. Powering the cars of the future. As a global materials and technology group, we apply our specialist knowledge to offer materials and solutions that are essential to everyday life. We aim to be a clear world leader in materials for clean mobility and recycling and have...
-
Enterprise Risk Manager
il y a 3 semaines
Bruxelles, Région de Bruxelles, Belgique Page Executive Temps pleinAbout Our Client With a focus on serving governments globally, they offer design, integration and delivery of solutions that's offers efficiency in defense, citizen services and transportation. Job Description The Enterprise Risk Manager Europe, reporting to the Chief Legal Officer, is responsible for the implementation and delivery of company's defined...
-
Compliance and Ethics Manager Europe
il y a 3 semaines
Bruxelles, Région de Bruxelles, Belgique Page Executive Temps pleinAbout Our Client Our client is a British international service company, focusing on serving government and public entities globally, operating in the following sectors: defense, health, space, justice, migration, customer services, and transport. Job Description This role will report to the Chief Legal Officer Europe and be part of the Legal team. Our client...
-
Jobfixing - IT Auditor
il y a 2 semaines
Bruxelles, Belgique Jobfixing Temps pleinWe are seeking a talented and experienced Medior IT Audit Specialist to join our team. The ideal candidate will be responsible for overseeing internal IT audit processes, managing RFP and regulatory audit follow-ups, and developing/maintaining frameworks for audits related to third-party relationships, IT infrastructure, customer data, and regulatory...
-
Service Delivery Manager IT – Security
il y a 4 semaines
Bruxelles, Belgique Ypto Temps pleinWithin the Business Service Management (BSM) team of our Operations department, you are responsible for maintaining the transition, operations and continuous improvement of the service levels and KPIs from the Security services in the SNCB/NMBS organisation (including its subsidiaries) so as to adequately protect the company resources. Responsibilities : ...
-
Cyber security officer
il y a 3 semaines
Bruxelles, Région de Bruxelles, Belgique Randstad Digital BE Temps pleinThe Security Governance & Investigations team protects our client and its interests. They lead Cyber Security efforts, covering governance, architecture, management, and incident response.Within the Cyber Program & Strategic Missions team, we are looking for a highly motivated Cyber Program Security Officer to join and reinforce the team. You will assist in...
-
Cream Consulting
il y a 2 semaines
Bruxelles, Belgique Cream Consulting Temps pleinWhat is a CyberSecurity Analyst at Cream? Within the Infrastructure's practice together with Paul, embrace your role and be responsible for ensuring security of infrastructure or application technology through the implementation of security services, risk assessments, requirements setting and active participation in project delivery lifecycle, as well...
-
Service Delivery Manager IT
il y a 5 jours
Bruxelles Anderlecht, Belgique Ypto NV Temps pleinWithin the Business Service Management (BSM) team of our Operations department, you are responsible for maintaining the transition, operations and continuous improvement of the service levels and KPIs from the Security services in the SNCB/NMBS organisation (including its subsidiaries) so as to adequately protect the company resources. Responsibilities: -...
-
Service Delivery Manager IT
il y a 4 semaines
Bruxelles Anderlecht, Belgique Ypto Temps pleinWithin the Business Service Management (BSM) team of our Operations department, you are responsible for maintaining the transition, operations and continuous improvement of the service levels and KPIs from the Security services in the SNCB/NMBS organisation (including its subsidiaries) so as to adequately protect the company resources. Responsibilities: -...
-
Industrial Risk Manager
il y a 4 semaines
Bruxelles, Région de Bruxelles, Belgique Page Executive Temps pleinAbout Our Client The Group is a leading global provider for industries operating in high temperature conditions, specializing in thermal protection in industrial equipment. Job Description As the Industrial Risk Manager, you will be responsible for identifying, assessing, and mitigating risks that could potentially affect the company's operations, as well as...
-
Compliance officer
il y a 1 semaine
Bruxelles, Région de Bruxelles, Belgique Michael Page Belgium Temps pleinAs compliance officer you ensure that the company adheres to all relevant laws, regulations, and industry standards to minimize risk and maintain ethical business practices. You develop and implement policies and procedures, conduct audits, and provide training to staff to ensure compliance with legal and regulatory requirements.Client DetailsOur client is a...
-
Compliance Officer
il y a 4 semaines
Bruxelles, Belgique 0825 Deutsche Bank Aktiengesellschaft, Filiale Brüssel Temps pleinDescription : Organisation Deutsche Bank is Germany’s largest bank, the strongest and most stable economy in Europe. It operates in 59 countries and has a customer base in no less than 150 countries. Overall, the bank has 21 million customers through its three main activities: Corporate Bank, Investment Bank and Private Bank. In Belgium, Deutsche...
-
Compliance Cmp Officer
il y a 4 semaines
Bruxelles Etterbeek, Belgique Degroof Petercam Temps pleinLocatie: **Bank Degroof Petercam SA** *** **Belgium** - Rue De L'Industrie 44, - 1040 Brussels Context The Compliance CMP Officer supports the Compliance CMP Manager in defining and executing controls in the framework of the Compliance Monitoring Plan of BDP Belgium and in coordinating, supporting and following the set-up of a CMP Plan and Program in the...
-
Domain Lead – Risk
il y a 4 semaines
Bruxelles, Belgique Ypto Temps pleinAs the Risk Expert at YPTO, you will be responsible for overseeing the organization's risk management process, providing guidance to the Risk team, and ensuring continuous improvement. Additionally, you will act as an authority in developing, implementing, and maintaining the risk management framework in alignment with academic theories, industry standards,...
