Senior Professional, IT Security Risk and Compliance
il y a 1 jour
Are you looking for new challenges and personal growth within Coca-Cola Europacific Partners? Then we have a great opportunity for you._
**Senior Prof, IT Security Risk and Compliance, All CCEP Locations**
**Job purpose**
Be part of the Information Security Risk and Compliance team, to manage Information and Cyber Security risks through effective identification, assessment, decisioning, mitigation treatment via control implementation, and active monitoring through measurement, reporting and assurance activities.
This position works with stakeholders across all of CCEP, in all business units, countries, departments, BPT and the wider Information Security teams to ensure compliance to risk and controls design, defined by regulation, local law and CCEP:
- Working with stakeholders and control owners on driving performance, continuous improvement and maturity.
- Driving process and governance improvements within and outside the team that will help strengthen our ISRC landscape.
- Maintaining security policy governance and lifecycle, executing an effective end to end Information Security program while supporting internal and external audits from evidence submission through to finding remediation.
**What will be expected of you**
- (Aspiring) Subject Matter Expert for InfoSec Risk and Compliance related topics (e.g. NIST, NIS2);
- Maintain ISRC framework and compliance performance through GRC dashboarding;
- Provide consultancy and technical expertise on risk mitigation and control maturity activities;
- Produce Management reporting on Information Security Risk and Control Performance Indicators;
- Facilitate the Information Security Policy and Standards annual review cycles and policy exceptions and exemptions management;
- Deliver Information Security risk assessments at the corporate
- and local levels. Including: assessment facilitation, report creation of risk decisioning, mitigation planning and action tracking, maintain all evidences and progress updates on the InfoSec risk register;
- Perform periodic self-assessment of risk and controls, health checks, scoring, mitigation, and continuous improvement;
- Work collaboratively with the independent assurance functions - Internal and External Auditors:
- Support and facilitate audit evidence collection and secure storage
- Provide tracking and management reporting of all Audit findings
- Manage InfoSec control compliance attestation, working with the control owners providing 2nd Line of Defence oversight;
- Build a strong network with key stakeholders such as: Enterprise Risk Management, Business Continuity & Resilience Team, Corporate Security, Finance Internal Controls Team, Internal Audit;
**Qualifications required**
- Bachelor’s degree in Computer Science, Management of Information Systems, Business, or related field
- 2+ years of IT experience with 2+ years of Information Security experience or similar
- English: proficiency (must)
**Desirable**:
- Qualification in Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC) or similar;
**Experience required**
- Strong communication skills both verbal and written with demonstrated effective team working in a multi-cultural international environment
- Working collaboratively with Internal
- and External auditors
- Information Risk Management methodology and tools
- Implementing a Security control frameworks such as ISO 27001/2/5, NIST or similar
- Demonstrated track record of success in delivering projects/audits with budgetary constraints
- Process design and implementation skills, and mindset of continuous improvement to support the achievement of organisational goals and strategies
- Good analytical and planning skills combined with independent, goal
- and process-oriented way of working
- Managing and maintaining Information Security and Risk & Compliance governance structure;
- Proven experience in navigating complex organizations with creative problem solving
- Experience in the consumer product market, beverage industry or logistics
**Technical skills required**
- Knowledge of regulatory environments applicable to US publicly traded companies (SOX), Information Security, data privacy regulations and NIS2;
- Knowledge of Salesforce platform and specific Salesforce auditing standards, requirements or characteristics;
- Knowledge of Information Security Management Systems and Security Control Frameworks;
- Ability to implement ServiceNow GRC workflows across the organization;
**Behavioural competencies**
- High communication skills using assertiveness and negotiation skills within a multi-cultural international organisation;
- Ability to work independently within a remote team;
- Conscientiousness, analytical and creative in thought and action;
- Ability to quickly adopt to situations and learn new competencies;
- Passion for collaborating with customers, partners, and co-workers to ac
-
IT Security and Compliance Professional
il y a 3 semaines
Anderlecht, Belgique Coca-Cola Europacific Partners Temps pleinAre you looking for new challenges and personal growth within Coca-Cola Europacific Partners? Then we have a great opportunity for you._ IT Security and Compliance Professional**, All CCEP Locations** **Job purpose** Be part of the Information Security Risk and Compliance team, to manage Information and Cyber Security risks through effective...
-
Fujitsu Technology Solutions
il y a 2 semaines
Anderlecht, Belgique Fujitsu Technology Solutions Temps pleinFujitsu is recruiting for a client in Anderlecht (Brussels) an IT Security Architect to work in close relationship with the CISO team.Key responsibilities Information Security managementDefine security goals and metrics aligned with the company's strategy. Maintain an Information Security Management System (ISMS) based on international standards. Monitor...
-
Fujitsu Technology Solutions
il y a 2 semaines
Anderlecht, Belgique Fujitsu Technology Solutions Temps pleinFujitsu is recruiting for a client in Anderlecht (Brussels) an IT Security Architect to work in close relationship with the CISO team. Key responsibilitiesInformation Security managementDefine security goals and metrics aligned with the company's strategy.Maintain an Information Security Management System (ISMS) based on international standards.Monitor...
-
Information Security Risk Manager
il y a 2 semaines
Anderlecht, Belgique Pauwels Consulting Temps plein**Job description**: Pauwels Consulting is op zoek naar een Information Security Risk Manager (payroll of freelance) voor ons groeiend management-team! Bij Pauwels Consulting linken we onze consultants niet gewoon aan verschillende projecten, we proberen samen met hen actief aan hun carrière te bouwen. Binnen de Pauwels familie zal je ook een hechte...
-
Ciso Officer
il y a 1 semaine
Anderlecht, Belgique Ypto NV Temps pleinThe IT Risk Officer is responsible for guarding the vision, the development of strategy and the implementation of the Information Security Risk and IT Risk Management programme within the NMBS-SNCB organisation (including its affiliates). You identify, analyse and report information security risks for different NMBS-SNCB Business Units. You provide...
-
Cybersecurity Governance or Risk Officer| Brussels
il y a 2 semaines
Anderlecht, Belgique Computer Futures Temps pleinResponsabilities As a GRC Officer within the CISO team, you will be responsible for managing and improving the Governance, Risk and Compliance processes of our organization. You will work closely with various internal and external stakeholders to ensure a seamless integration of risk management and compliance within all layers of the organization. Your main...
-
Cybersecurity Governance or Risk Officer| Brussels
il y a 2 semaines
Anderlecht, Belgique Computer Futures Temps pleinResponsabilitiesAs a GRC Officer within the CISO team, you will be responsible for managing and improving the Governance, Risk and Compliance processes of our organization. You will work closely with various internal and external stakeholders to ensure a seamless integration of risk management and compliance within all layers of the organization. Your main...
-
Computer Futures
il y a 2 semaines
Anderlecht, Belgique Computer Futures Temps pleinResponsabilities As a GRC Officer within the CISO team, you will be responsible for managing and improving the Governance, Risk and Compliance processes of our organization. You will work closely with various internal and external stakeholders to ensure a seamless integration of risk management and compliance within all layers of the organization. Your main...
-
Computer Futures
il y a 2 semaines
Anderlecht, Belgique Computer Futures Temps pleinResponsabilities As a GRC Officer within the CISO team, you will be responsible for managing and improving the Governance, Risk and Compliance processes of our organization. You will work closely with various internal and external stakeholders to ensure a seamless integration of risk management and compliance within all layers of the organization. Your main...
-
Enterprise Data Security Architect
il y a 17 heures
Anderlecht, Belgique UCB Temps pleinMake your mark for patients To strengthen our Information Technology team, based at the HQ, in Brussels, Belgium we are looking for a talented individual to fill the position of: Enterprise Data Security Architect. The global role of Data Security Architect is a Senior role within the department of IT Security, Risk management, Data Privacy...
-
Enterprise Data Security Architect
il y a 3 semaines
Anderlecht, Belgique UCB Temps plein**Make your mark for patients** To strengthen our **Information Technology** team, based at the HQ, in Brussels, Belgium we are looking for a talented individual to fill the position of**:Enterprise** **Data Security Architect.** The global role of Data Security Architect is a Senior role within the department of IT Security, Risk management, Data Privacy...
-
Enterprise Security Architect
il y a 5 jours
Anderlecht, Belgique UCB Temps pleinMake your mark for patients To strengthen our Information Technology team, based at the HQ, in Brussels, Belgium we are looking for a talented individual to fill the position of: IT Security, Risk management, Data Privacy and Compliance. The global role of Enterprise Security Architect is a Senior role within the department of IT Security, Risk...
-
Enterprise Security Architect
il y a 5 heures
Anderlecht, Belgique UCB Temps plein**Make your mark for patients** To strengthen our **Information Technology** team, based at the HQ, in Brussels, Belgium we are looking for a talented individual to fill the position of**:IT Security, Risk management, Data Privacy and Compliance.** The global role of Enterprise Security Architect is a Senior role within the department of IT Security, Risk...
-
Information Security Officer
il y a 3 semaines
Anderlecht, Belgique Robson Bale Ltd Temps plein**Information Security Officer - French and Dutch Speaker - Freelance - Belgium** Robson Bale are looking for a French and Dutch speaking Information Security Officer to come on board for an initial 6 month contract. 6 months, market rate. Hybrid model with 3 days per week on site in Anderlecht. **Primary Tasks and responsibilities** - Take the lead of...
-
IT Security Project Manager
il y a 4 semaines
Bruxelles Anderlecht, Belgique Ypto NV Temps pleinThe primary role of the Project Manager is to work closely with customers to drive the successful delivery of IT projects, particularly around the newer IT Security Technologies. The Project Manager will facilitate the management of scope for the customer’s requirements, plan implementations and deliver to the planned scope and budget. **Key...
-
Teamlead Governance, Risk and Compliance
il y a 4 semaines
Bruxelles Anderlecht, Belgique Ypto NV Temps plein**People management** - Ensure clear governance, including roles and responsibilities, accountability and delegation of tasks within their team. - Coach and steers the team where necessary and guides individual team members in their personal development together with the CISO and the HR business partner. - Recruit and hire new GRC team members with the right...
-
Project Manager IT Security
il y a 3 semaines
Anderlecht, Belgique Pauwels Consulting Temps plein**Job description**: Pauwels Consulting is searching for a Security Project Manager (payroll or freelance) to join it’s growing management team. Are you the one-in-a-kind Project Manager that dares to take on challenging projects at our clients? At Pauwels Consulting, we don’t just mix and match our consultants with the different projects, we actively...
-
Cyber Security Officer
il y a 7 jours
Anderlecht, Belgique Ypto NV Temps pleinYou will join the Solutions and Services team within the SNCB CISO organisation (Cyber and Information Security Office), a team consisting of technical specialists. You assist in different cyber security projects and coordinate third parties to deliver parts of the security solutions required to protect the NMBS organization. You perform the third level...
-
IT Asset Manager
il y a 3 semaines
Bruxelles Anderlecht, Belgique Ypto NV Temps plein**GOAL** Optimize the management of IT assets to support business objectives, minimize risks and costs, ensure compliance while fostering a culture of continuous improvement and innovation. Oversee the setting up and management of a complete "single source of truth" database of all IT assets within our organization. At YPTO the ServiceNow ITAM module will...
-
Information Security Officer
il y a 2 semaines
Bruxelles Anderlecht, Belgique Ypto NV Temps pleinAs an Information Security Officer you will be part of a team responsible for Information Security Risk assessment, IS Risk and Audit follow-up, Information Security standards and the implementation of IS controls. Your responsibilities: **Information Security Management**: - You identify security protection objectives and metrics in line with the...
