Information Security and Governance Officer

Employments - Published on 21/10/2021


In the context of reinforcing its operations capabilities while performing a major transformation, Coreso is in search for an Information Security and Governance Officer able to on-board quickly and to ramp up at speed in a diverse IT eco-system.

Coreso relies strongly on a Managed Service Provider (MSP) to support the infrastructure and applications operations but remains in close control of the security, governance, architecture and design.  Coreso, then delegates the implementation and daily operations to the MSP or other 3rd parties. The person is foreseen to take over a series of duties associated with the global ISMS management, from current Enterprise Architects as the need is growing and to deliver support in the projects design phases.  The function will be in charge of endorsing the responsibility of defining, implementing and following-up compliancy of the IT Security strategy and policies, to ensure confidentiality, integrity and availability of all Coreso systems.

 

Your future mission

Security Policy

  • Define and implement IT Security Policy, within the strategic goals of the organization, and translate this into IT security concepts, to ensure these measures are followed-up in the different domains and there is a coherent level of security in the whole organization.

Risk analysis & audit

  • Analyze the IT risks and perform different audits, as well as participate in the internal & external risk management processes to ensure risks are limited.
  • Propose action plan and technical and/or organizational measures to the management without losing the pragmatic and realistic approach.
  • Design, implement all required controls and monitors that will ensure continuous improvement of security position of Coreso.

Incident response

  • Ensure follow-up and recovery from cyber security incidents to guarantee incidents are quickly resolved.
  • Assist in defining disaster recovery plans.

Solutions and advice

  • Check and validate the security actions, solutions- and tools, that need to be implemented in context of projects and across the organization, to ensure compliance with the security policy.

Awareness & training

  • Raise awareness and provide trainings about IT Security, to ensure knowledge transfer and minimize the risks within the company.

Governance, Optimization & synergies

  • Identify shortcomings in current methods, systems and procedures for both Coreso & Stakeholders TSO’s. Analyze, propose and (within plan) implement alternatives or synergies to ensure security at Coreso level.
  • Support Coreso’s IT processes development and procedures documentation

Projects

  • Initiate, manage and/or participate in projects for the area of IT Security, in line with the PMO Methodology, project plan and deliverables, in order to improve the “Security per Design” concept, ensure the realization of projects on time, within budget and according to agreed objectives.

Budget

  • Support IT Management in the process of budget preparation for the organization, in order to ensure a growth-proof, stable, dynamic & cost-efficient security level in IT department

 

Your profile/competences

  • Master’s degree (or equivalent) in IT, engineering, or a related field.
  • You have 3-8 years of experience in security or IT Governance management. Working experience in utility companies is a plus.
  • Good knowledge of all IT technical components.
    • Experience in Cloud computing environments
  • Demonstrable evidence of analysing, documenting and re-engineering complex business processes.
  • Good knowledge in documenting business requirements.
  • Excellent presentation and communication skills with end users and senior management.
  • You can describe yourself as someone who:
    • Communicates concisely and efficient;
    • Is perceived as a pragmatic person;
    • Takes the lead, acts pro-actively, sets priorities and is well organized;
    • Likes analyzing, solving problems and is result-oriented;
    • Likes working in a changing environment;
    • Is a real team player.
  • Technical competences:
    • Knowledge of common information security management frameworks, such as ISO/IEC 20000, 27001,
    • ITIL Foundation
    • Project Management basics (PMI, Agile)
    • Network security and architecture
    • System hardening standards on Linux & Windows.
    • Elastic, Shell scripting, .
  • You communicate fluently in English (oral and written). French and/or Dutch are an asset.

Offer? 

  • A full-time permanent contract in a stable, multilingual and international environment. 
  • We offer a market-based salary complemented by extra-legal benefits eg. hospitalization insurance, company car, etc. 
  • Our offices are located in the heart of the European district of Brussels, easily accessible by public transport. 

 

 

 


Apply for this job >