Dieses Jobangebot ist archiviert und steht nicht mehr zur Verfügung.
Vakante Jobangebote finden Sie unter Projekte.
Vakante Jobangebote finden Sie unter Projekte.
Information Security Governance Officer
Eingestellt von Base 3 Systems S.A.
Gesuchte Skills: Cmmi, Library
Projektbeschreibung
One of our most prestigious clients is looking for an INFORMATION SECURITY GOVERNANCE OFFICER who will:
- Create and implement a document framework for structuring' information security documents
- Prepare ISO certification for Information Security processes
- Define and update Information Security Governance documents
- Prepare and animate Information Security boards/committees consisting of senior management.
THE ABOVE ACTIVITIES WILL ENSURE THAT:
- The existing process of Information Security governance is well maintained and documented
- The information governance is improved through the creation of a documentation framework for structuring' information security documents such that:
- Internal and cross-document coherence (usage of terminology; assignment of)
Roles
- ISO 27001 certification requirements are met;
- The documentation status (up-to-date or not) is managed from a CMMI point of view;
- The different information security committees are well prepared, allowing for effective decision-making.
AS INFORMATION SECURITY GOVERNANCE OFFICER, THE CANDIDATE WILL:
(1) Create a documentation framework that allows a clear positioning of each information security structuring' document. The framework will align with the Group framework.
The delivery of the framework will include:
- Creation of a central reference library for all published information security
- Documentation (policies; standards; procedures; templates)
- Status reporting capability to enable oversight and drive iterative improvements
- Communication of the framework to concerned parties (authors; owners; users).
(2) Write/Review/Update governance documentation including:
- Information Security Management System
- Information Security Governance
- Information Security Rolesextension possible.
Language: English. French and/or Dutch is nice-to-have but not mandatory.
Expertise: 3 to 5 years' experience in this area.
Certification: CISM (ISACA) is mandatory. CISSP (ISC²) is a plus. Very good knowledge of the ISO 27001 and the ISO certification process is required.
- Create and implement a document framework for structuring' information security documents
- Prepare ISO certification for Information Security processes
- Define and update Information Security Governance documents
- Prepare and animate Information Security boards/committees consisting of senior management.
THE ABOVE ACTIVITIES WILL ENSURE THAT:
- The existing process of Information Security governance is well maintained and documented
- The information governance is improved through the creation of a documentation framework for structuring' information security documents such that:
- Internal and cross-document coherence (usage of terminology; assignment of)
Roles
- ISO 27001 certification requirements are met;
- The documentation status (up-to-date or not) is managed from a CMMI point of view;
- The different information security committees are well prepared, allowing for effective decision-making.
AS INFORMATION SECURITY GOVERNANCE OFFICER, THE CANDIDATE WILL:
(1) Create a documentation framework that allows a clear positioning of each information security structuring' document. The framework will align with the Group framework.
The delivery of the framework will include:
- Creation of a central reference library for all published information security
- Documentation (policies; standards; procedures; templates)
- Status reporting capability to enable oversight and drive iterative improvements
- Communication of the framework to concerned parties (authors; owners; users).
(2) Write/Review/Update governance documentation including:
- Information Security Management System
- Information Security Governance
- Information Security Rolesextension possible.
Language: English. French and/or Dutch is nice-to-have but not mandatory.
Expertise: 3 to 5 years' experience in this area.
Certification: CISM (ISACA) is mandatory. CISSP (ISC²) is a plus. Very good knowledge of the ISO 27001 and the ISO certification process is required.
Projektdetails
Geforderte Qualifikationen
-
Kategorie:
IT Entwicklung, Ingenieurwesen/Technik