Head of Cybersecurity Division - based in Luxembourg

This position is based at our Luxembourg headquarters and requires regular office presence. The EIB offers you the opportunity to live and work in a truly international and multi-cultural environment. We also offer relocation support. The EIB, the European Union's bank, is seeking to recruit for its Group Information Systems Directorate (GIS), Cybersecurity Division (CD) at its headquarters in Luxembourg, a Head of Cybersecurity Division*.

This is a full time position at grade 7 for which the EIB offers a permanent contract.

• internal benchmark Division Head IT Technology & Infrastructure
  
  

Applicants will receive an initial feedback end of September/beginning of October

Purpose

As Head of Cybersecurity, you will lead the Bank’s enterprise-wide cybersecurity and IT risk management strategy, safeguarding our digital assets and ensuring secure, resilient IT operations. Partnering closely with the business, you will align security initiatives with strategic objectives, regulatory expectations, and industry best practices—creating a trusted environment where innovation and operations can thrive.

Operating Network

You will report to Director General of Group Information Systems Directorate.

Accountabilities

• Lead and shape the Cyber Security group function across all technical cybersecurity, including engineering and operations, monitoring and architecture
• Define and implement cybersecurity policies, standards, and controls, overseeing incident detection, response, and the remediation of vulnerabilities in line with banking best practices and regulatory expectations
• Monitor and anticipate emerging threats and technology trends, translating them into a strategic security roadmap and actionable improvements, including the follow-up of audit and risk recommendations
• Oversee Business Continuity and Disaster Recovery frameworks, ensuring risk assessments, testing, and crisis response plans maintain the resilience of critical banking services
• Manage the Identity and Access Management (IAM) function, ensuring secure and compliant access to data and systems, including privileged access monitoring and periodic recertification
• Ensure IT compliance and risk alignment, coordinating with internal stakeholders and regulators to maintain a robust control environment
• Build and inspire a high-performing cybersecurity team, fostering collaboration, continuous learning, and a culture of security awareness across the organisation
  
  

Qualifications

• University degree (minimum an equivalent to a Bachelor) preferably computer science or information technology related domain or in business administration.
• At least 10 years of professional experience in the IT function, particularly in the Security domain, ideally in international financial institutions and/or the private sector
• Experience in or proven ability for managing and coaching people ideally in multicultural environments or international organisations (e.g. contribution to: deciding on team resources and skills; establishing objectives; assessing performance; delegating and supervising tasks; guiding, motivating, coaching and providing feedback)
• Very good knowledge of IT Security, its practice and principles, the relevant standards and current best practice
• Certified Information Security Manager (CISM) or Certified Information Systems Security Professional (CISSP) Certification.
• Strong analytical thinking skills; strong sense of integrity and responsibility
• Very good experience in establishing cybersecurity and risk metrics for reporting
• Familiarity with banking regulations and frameworks such as DORA (Digital Operational Resilience Act); GDPR; ISO/IEC 27001 – Information Security Management Standard
• Experience with agile methodologies, routines, and tools Knowledge of market trends and developments in IT
• Excellent knowledge of English and/or French (*), with a good command of the other. (Knowledge of other EU languages would be an advantage).
  
  

Competencies

Find out more about EIB core and managerial competencies here

(*) Unless stated explicitly as a required qualification, a good command of French is not a pre-requisite for hire. As both English and French are however official working languages of the EIB, proficiency in both languages is a pre-requisite for your future career development. Any language clause in your contract must be fulfilled in order for you to be eligible for a promotion (either via the annual appraisal cycle or via an internal selection process). Proficiency is understood to mean the attainment of level 5 of the Inter Institutional language courses, corresponding to B1.2 of the Common European Framework of Reference for Languages (CEFRL). The Bank offers appropriate training support.

We hire and value talent with unique characteristics, creating a work environment where they can be themselves. We believe that Diversity, Equity and Inclusion makes us a performing and innovative organisation. We encourage all suitably qualified and eligible candidates to apply regardless of their gender identity/expression, age, racial, ethnic and cultural background, religion and beliefs, sexual orientation, disability or neurodiversity.

We strongly invite applicants with a disability, neurodivergent profile or chronic condition to request reasonable accommodations at any stage during the recruitment process. Please contact the EIB Recruitment team [email protected] who will ensure that your request is handled.

To find out more about our eligibility criteria click here.

By applying for this position, you acknowledge the importance of maintaining the security and integrity of the Information of the EIB Group. In case of selection for the position you agree to comply with all measures (policies, controls, document classification and management) implemented by the EIB Group to prevent unauthorised disclosure of any information or any damage to the EIB Group reputation.

Deadline for applications: 12th September 2025