Information Technology Governance Consultant

Position Overview

Your key responsibilities will include:

Design and implementation of comprehensive information security and cybersecurity awareness and training programs on various topics

Managing and driving programs focused on cybersecurity skills development and regulatory compliance

Contributing to the continuous enhancement of our risk model to align with recent directives and standards

Analysing security-related data to develop effective governance strategies

Overseeing the execution of information security projects

Providing expert guidance on best practices in Information Security and Cybersecurity

Conducting initial security assessments for SMEs and offering actionable recommendations based on your findings

Key Responsibilities

Over 5 years of experience in information security, cybersecurity, or related fields

Proven experience managing cybersecurity control programs with in-depth knowledge of cybersecurity frameworks such as the ISO 27000 series, GDPR, and other regulatory requirements

Strong understanding of evolving directives and legislation from the European Commission

Exceptional ability to simplify complex information security and cybersecurity concepts for diverse audiences

Capability to provide clear and constructive feedback on critical cybersecurity initiatives, including policies and application designs

Experience in creating content and training materials on security and privacy topics to foster awareness and best practices

A strong eagerness to continuously learn and stay updated on emerging cybersecurity trends

Excellent verbal and written communication skills for engaging both technical and non-technical audiences

Fluency in English and French (mandatory), both spoken and written

Proven ability to independently manage and lead multiple projects

Qualifications

ISO 27001 Lead Auditor or Lead Implementer, and ISO 27005 Risk Manager certifications

Relevant certifications such as CISSP, CISA, CISM, or equivalent

Proficiency in Luxembourgish and/or German is a plus

General knowledge of infrastructure and software security testing

Project management experience and certifications (PMP, Prince2, etc.)