Dieses Jobangebot ist archiviert und steht nicht mehr zur Verfügung.
Vakante Jobangebote finden Sie unter Projekte.

Information Security Consultant/Master Data Policy Consult

Eingestellt von e-resourcing Limited

Gesuchte Skills: Consultant

Projektbeschreibung

Information Security Consultant

Mission

The Information Security Consultant is responsible for ensuring safe and secured information flows within the company by defining framework, guiding principles and Information security policy. Will translate concepts together with the impacted departments into workable processes and practices (within Business and IT).

The Information Security Consultant will define the overall Information security principles, policies and guidelines and frame Information Security requirements from a Company and business point of view.
He/She will ensure alignment with applicable legislation (changes), Group IT Security guidelines and local HR and Legal regulation (Labour and privacy law, CAO's).

He/She will see to it that the current practice is and remains in line with policy defined and actively perform audits to check compliancy with principles defined, vulnerabilities identified and new risks and threats in a fastly evolving market.

Special areas of attention will be data labeling, data- and information security,  data-privacy (incl.alignment with data privacy and General Data Protection Regulation GDPR).

KEY RESPONSIBILITIES

As a senior and experienced person, you are responsible for:

Defines, maintains, completes, refines and continuously enhances Requirements and Policy on Information security as a standard guideline for new IT development and IT operations practice.
Develops and designs Information Security Strategy taken into account, business and IT strategy, market evolution and threats.
Consolidates overview on current status, and defines multi-year road map in order to evolve to target situation defined
Actively organizes for continuous sensibilization and awareness of security risk and importance within the company at all levels (working together with COM)
Participates and guides in crisis situations on information security.
Develops, evaluates and enrolls, relevant information standard and guidelines and procedures, taking into account legally (Privacy, HR) imposed and business defined Security requirement.
Timely Initiates IT Project demand starting from security roadmap and priorities,including clear problem statement and business case
Requests urgent IT intervention of small changes for ad-hoc security incompliance's encountered.
Reports on Information security incidents, and pro-active interventions to mitigate
Where new, outside the policy or framework defined or potential risk exposure, is explicitly involved in changes designed and pending within IT and Business (prior to implementation)
Keeps in touch with latest market evolutions, benchmarks, best practices and customer testimonies (in- and outside); maintains overview of that and regularly reports and presents on Information security risks existing, pending or emerging
Actively checks and controls whether currnet Operational practice is in line with Security policys defined. Reports on in compliancies. Initiates external security audits in order to assess current situation and timely detect vulnerabilities
Reports to IT Management on Security KPI, Information risk and mittigation actions planned. Actively pursues implementation of actions defined.
Dedicated contact for Group IT on Information security items and Group Information Security strategy.

DESIRED EXPERIENCE/SKILLS

Knowledge

University degree in IT, exact sciences or equivalent by experience
Good knowledge of ISO27000
Strong knowledge of Information security concepts and IT technical solutions
Has defined Information security Policies, frameworks and guidelines projecting theoretical concepts to concrete requirement into operational practice

EXPERIENCE

10 years experience in the development, evaluation and implementation of Information security strategy, policies, guidelines and procedures
Proven track of record in IT Policy making and in the areas defined: data labelling, data- and information security, data-privacy
Knowledge of GDPR
knows how to integrate new evolutions (BOYD, Cloud, Mobile App, homeworking and people vision) in a coherent way
Specific knowledge in (Belgian) Utilities area (Material TIC, RT7)
Strong communication skills: English and French and/or Dutch
Able to adapt discours to target audience ( all levels, including COMEX)
Analysis and synthesis skills to translate theoretical concepts and standard to operational practice
Strong communicator lives and breathes Information security, knows how to sensiblize, actively organizes to keep this item on the agenda
present, review new propose changes and facilitate meetings with key stakeholders in order to obtain alignment, consensus and common vision on policies developed and compliancy with mainly HR Legislation, policies and practices and with Legal data
Work in Matrix organization and multi-disciplinary team (IT, Legal, HR, Communications), correct and integer
Pro-active
Responsible, organizing for risk avoidance
Strong collaboration skills, facilitates
Raises risks, escalating when unacceptable risk, engaging in practical minimal solutions not to block corporate interest business need and daily operations continuity (with committed mitigation plan and structural solution in parallel)

Practical information

Start: Asap.

EndSeptember'17 (6months)

Location: Brussels

Projektdetails

  • Einsatzort:

    Brussel, Belgien

  • Projektbeginn:

    asap

  • Projektdauer:

    Keine Angabe

  • Vertragsart:

    Contract

  • Berufserfahrung:

    Keine Angabe

Geforderte Qualifikationen

  • Kategorie:

    Organisation/Management

  • Skills:

    consultant

e-resourcing Limited