Information Security Officer - Governance, Risk and Compliance
Key accountabilities
Assisting with the implementation and maintenance of the Information Security Programme;
Assisting with efforts to align internal security practices with industry best practices and security frameworks commensurate with strategy and the expectations of our clients and regulators;
Stay abreast of the threat landscape specific to Euronext and adjust/draft solutions designs according to developments in this space;
Timely and accurate reporting of the current state of all assigned projects/initiatives;
Keeping track of policy and standards exceptions and the risks aligned to them;
Keep abreast of new risks and trends in the threat landscape that may need to be addressed within information security policies, procedures and standards;
Exhibit a broad knowledge of security compliance and auditing frameworks and apply those to formulate policies, procedures and standards;
The delivery of ongoing security awareness and training through various tools and workshops;
Ownership and oversight of all controls owned by InfoSec, including the approval point for all change efforts, etc., that might impact any such controls.
Required Skills
5+ years' experience in a specific Information security role (e.g., related ISO 27001 consultant/projects);
Experience within the financial sector will be a considerable benefit;
Past/proven experience working in a team;
Established background in Information Security Risks processes and in IT/Information Security Audit;
Strong background and knowledge of working with and implementing international security standards and frameworks, such as ISO27001, ISO27002, ISO27005, NIST, Cobit 5, etc.;
Ability to deliver security education and awareness training sessions and material;
Excellent written/verbal communications skills and organisational skills;
Must be able to work well under pressure, prioritise workload appropriately and work well alone or as part of a team;
Ability to adjust to changing priorities while multitasking effectively and to articulate complex security and privacy concepts to business users;
Ability to communicate with clients in a professional manner;
Working/technical knowledge of IT infrastructure and security specific controls;
Security industry certifications are considered a plus, e.g., CISA, CISM, CRISC, CGEIT, Cobit 5, ISO 27001 or other security/ISO related certifications.
Euronext Values
Unity
We respect and value the people we work with.
We are unified through a common purpose.
We embrace diversity and strive for inclusion.
Integrity
We value transparency, communicate honestly and share information openly.
We act with integrity in everything we do.
We don't hide our mistakes, and we learn from them.
Agility
We act with a sense of urgency and decisiveness.
We are adaptable, responsive and embrace change.
We take smart risks.
Energy
We are positively driven to make a difference and challenge the status quo.
We focus on and encourage personal leadership.
We motivate each other with our ambition.
Accountability
We deliver maximum value to our customers and stakeholders.
We take ownership and are accountable for the outcome.
We reward and celebrate performance.
We are proud to be an equal opportunity employer. We do not discriminate against individuals on the basis of race, gender, age, citizenship, religion, sexual orientation, gender identity or expression, disability, or any other legally protected factor. We value the unique talents of all our people, who come from diverse backgrounds with different personal experiences and points of view and we are committed to providing an environment of mutual respect.
Additional Information
This job description is only describing the main activities within a certain role and is not exhaustive. It does not prevent adding more tasks, projects.
About Us
Euronext is the leading pan-European market infrastructure, connecting European economies to global capital markets, to accelerate innovation and sustainable growth. It operates regulated exchanges in Belgium, France, Ireland, Italy, the Netherlands, Norway and Portugal. With close to 1,930 listed issuers and around €6.3 trillion in market capitalisation as of end December 2022, it has an unmatched blue-chip franchise and a strong diverse domestic and international client base. Euronext operates regulated and transparent equity and derivatives markets, one of Europe's leading electronic fixed income trading markets and is the largest centre for debt and funds listings in the world. Its total product offering includes Equities, FX, Exchange Traded Funds, Warrants & Certificates, Bonds, Derivatives, Commodities and Indices. The Group provides a multi-asset clearing house through Euronext Clearing, and custody and settlement services through Euronext Securities central securities depositories in Denmark, Italy, Norway and Portugal. Euronext also leverages its expertise in running markets by providing technology and managed services to third parties. In addition to its main regulated market, it also operates a number of junior markets, simplifying access to listing for SMEs.
#J-18808-Ljbffr