Demanda en Luxemburgo de Directores de servicios de tecnología de la información y las comunicaciones

Job Description & Summary

PwC Luxembourg is hiring a Cybersecurity Governance Experienced Consultant M/F/D. What if it was you?

Who we are: We are the largest professional services firm in Luxembourg, providing audit, tax and advisory services to a wide variety of clients. To make it happen, we count on the expertise of over 3,700 people from 94 different countries, who strive every day to reach excellence and team up to solve important problems through innovative solutions. We value diverse and singular career paths, embrace everyone's unique self and encourage our People to fuel their potential in a work environment that is inclusive, stimulating, and motivating.

Your mission: As a Cybersecurity Experienced Consultant, you will have the opportunity to help our clients identify current and evolving threats they face. You will help organisations to define and implement security measures to protect them against these evolving cyber threats so as to ultimately support them in achieving their business objectives.

Be a part of our team where you will:

    Define and implement information security governance framework including policies, procedures, standards, baselines, roles and responsibilities;

    Assist our clients (Chief) Information security Officers or IT security officers in their day-to-day operations;

    Participate in assignment to conduct risk assessment on organisations' business processes, new and existing IT systems;

    Define recommendations and support implementation to remediate the risks according to best practices;

    Define key risk indicators (KRIs) and key performance indicators (KPIs) to effectively monitor risks;

    Support organisations in conducting information security maturity assessment against standards such as the ISO 2700X;

    Support clients to identify their business obligations with focus Cybersecurity risk-related regulations such as the EBA, CSSF and other applicable regulatory bodies;

    Define and implement cybersecurity roadmap supporting our clients to identify their priorities, implementation costs, potential for tooling;

    Participate in the process to respond to request from clients;

    Build and maintain relationships with the members of the team, other teams in the firm and clients;

    Support our clients in their transformation journey following Digital Operational Resilience Act or NIS2 requirements.

Let's talk about you. If you are/have…

    Bachelor's or master's degree in management information systems, Computer Science, or related field;

    Background in security compliance, IT risk management and technical frameworks;

    At least 2 years of experience in information security or cybersecurity;

    Good experience of the regulatory requirements such as DORA, NIS2, EBA, CSSF, GDPR etc;

    Experience in participating in cybersecurity assignment and being able to work with teams and clients;

    Experience in a similar role in consulting or industry;

    Good expertise in risk management and knowledge of risk management elements such as threats, vulnerabilities, risk appetite, risk tolerance, risk profile;

    Excellent written and verbal communication skills in both English and French.

    Ability to communicate effectively with team members and clients;

    Certifications such as ISO 27001, CISA, CISSP, GSTRT etc may be an added advantage.

You are the candidate we are looking for!

Moreover, our recruitment process is short and simple:

    A technical interview with a business recruiter;

    An interview with a Talent Acquisition Specialist to assess your motivation;

    An interview with a Partner of the team, if relevant.