Privacy Praxis

Functieomschrijving

We are looking an IT & Cyber Control & Compliance officer
The Risk and Compliance team supports IT and Business Units to define, implement and maintain an IT and Information Security Management System (ISMS), with the ultimate objective to enable sound and formal risk decision making by Bank.
The implementation of a suitable ISMS requires to define an integrated normative and control framework, based on authoritative sources (eg: directives, laws,...), via policies and standards. The effective operational implementation of these policies and standards must be ensured through a compliance monitoring and controls that measures the degree of conformity and effectiveness. The final objective being to provide reasonable assurance on the achievement and realization of important IT, security and continuity risk control objectives.
Complementary to these activities, the GRC team is very active in:

- the development and implementation of IT and Cyber controls in order to mitigate risks and demonstrate compliance.

To support these activities, The Bank, Risk and Compliance team is looking for an IT and Cyber Control and Compliance Officer.

As an IT & Cyber Control and Compliance Officer you will carry on the activities listed below:

- Develop, Implement and Maintain Information Security Controls (with a special focus on Identity & Access Management)
- In order to ensure that the organization, processes, and assets are managed in accordance with the IT and security policies, and that therefore the risks are controlled
- Support first-line in the definition and implementation of IT and security controls;
- Coordinate and monitor the execution of first-line controls;
- Follow-up and report to management and second line of defence the results of first-line controls and status of remediation actions;
- Provide advice on improvement of existing IT and Cyber security controls.
- Contribute to the tasks wrt Information Security Normative Framework
- Acquire and maintain knowledge of Information security policies, their evolution and alignment with Authoritative sources, other frameworks and legislation;
- Perform gap analysis to ensure that missing elements are integrated when & where relevant in the Information Security Policies by proposing the necessary change requests texts;
- Provide a multidimensional compliance view;
- Maintain a traceable inventory of changes related to controls and updates in GS normative framework.
- Based on a good knowledge of the bank normative framework that you will need to acquire, and particularly, on your own experience
- Identify impacted assets and processes upon policy & control changes;
- Allocate the implementation roles and responsibilities for each security requirement;
- Get implementers' acceptance on the roles and responsibilities allocated to them;

Details
- The misssion is locate in the center of brussel
- Hybrid (work on site and remotely)
- Long term mission
- Employee prefered
- Good salary package, company car, hospotal insurance, cheque repas.

Profiel

Jobgerelateerde competenties
- Een onderneming bijstaan binnen het wettelijk kader (fiscale regels optimaliseren,...)
- Het vakgebied opvolgen (actualiteit van wetten, rechtspraak,...)
Medewerkers informeren over de evolutie van teksten

AanbodPlaats tewerkstelling

1000 BRUSSEL

Vereiste studies
- Bachelor na bacheloropleiding
- Professioneel (gerichte) bachelor (PBA)
- Academisch (gerichte) bachelor (ABA)

Werkervaring
- Minstens 2 jaar ervaring

Talenkennis
- Engels (zeer goed)

Contract
- Vaste Job
- Voltijds
- Dagwerk

Plaats tewerkstelling
- 1000 BRUSSEL