IT Risk & Compliance Officer (m/f)

Mission

Within the framework of the development and maintenance of the CSSF’s information systems, the “CSSF Information Systems” department wishes to recruit a IT Risk & Compliance Officer.

Role & responsibilities

Management of IT risk mapping
Assessment of compliance with policies, standards and regulations by carrying out risk assessments, controls and drafting action plans
Review, design and deployment of IT risk management systems and associated controls
Creating, updating and managing IT department procedures/policies
Management of internal and external IT audits (IT point of contact for auditors)
Management of IT activities relating to the RGPD
Participation in the CSSF continuity management program (BCP)

Your profile

University degree (BAC + 4 / BAC + 5) with a specialization in information systems management and/or security
At least 3 years' experience in an IT services company, network/security integrator or risk management consultancy in one or more of the following areas: IT compliance, IT risk management, Business Continuity, IT Audit
Understanding of risk management and treatment frameworks
Strong technical knowledge of information technology systems and infrastructure
ITIL, CISM, or CISSP certifications are required
Knowledge and experience of regulatory frameworks and compliance standards such as COBIT, ISO27K, etc
Knowledge of relevant laws and regulations related to data privacy (RGPD)
Experience of working and collaborating effectively with cross-functional functions such as Internal Audit or Risk Management
Good writing, analytical and summarizing skills in the creation and updating of high-quality documentation relating to IT processes
Fluency in French and English is mandatory. Fluency in Luxembourgish and German is an asset.
Knowledge of the financial sector will be considered an additional asset

The successful candidate (m/f) will be hired as public employee (“employé de l’Etat”) under a permanent contract. If the candidate meets the required conditions, s/he will be asked to apply for admission to the status of civil servant (“fonctionnaire de l’Etat”).

Prior to the conclusion of the contract, the candidate must submit an extract from the criminal record (bulletin n°3), dated less than 2 months, in order to prove their conduct and integrity.

Apply now

* Required fields

Job reference *

Title *

First name *

Last name *

Date of Birth *

Nationality *

Phone *

E-mail *

How did you find about the position? *

Please specify *

Your resume *5MB max pdf

Your cover-letter *2MB max pdf

Your ID card *2MB max pdf, png, jpg, jpeg

Your Diploma *2MB max pdf, png, jpg, jpeg

Additional document2MB max pdf, png, jpg, jpeg

By ticking this box, you acknowledge that you have read and accepted our Job Applicant Privacy Notice *

Name	Description	Duration
cssf_cookies	Saves information regarding the user's consent to the use of cookies for each optional category.	1 year
ROUTEID	Technical cookie allowing load distribution.	Deleted when the browsing session ends
TBMCookie*	Security: This cookies protects the website against automated attacks.	Deleted when the browsing session ends
__utmvc	These first party cookies are set by a third party service to filter out malicious requests.	Deleted when the browsing session ends
__utmvm*	These first party cookies are set by a third party service to filter out malicious requests.	15 minutes

Name	Description	Duration
_pk_id.#	Collects anonymous statistical data on the website consultations, such as the number of visits or the average time spent on the website. The data is processed in-house and is not shared with a third party.	1 year
_pk_ses.#	Collects anonymous statistical data for the tracking of the pages consulted during the browsing session. The data is processed in-house and is not shared with a third party.	30 minutes

IT Risk & Compliance Officer (m/f)

Mission

Role & responsibilities

Your profile

Apply now

Cookie settings

Necessary Cookies

Functional Cookies

Performance Cookies