ICT Risk Officer (1st LoD) (M/F)

Banque Internationale à Luxembourg

  • Luxemburg
  • Unbefristet
  • Vollzeit
  • 15 Tage her
Job DescriptionFounded in 1856, Banque Internationale à Luxembourg is the oldest multi-business bank in the Grand Duchy. From its foundation, the BIL has always played an active role in the development of the Luxembourg economy. It currently operates in retail, private and corporate banking, as well as on major capital markets. Employing more than 2 000 people, BIL is present in the financial hotspots that are Luxembourg, Switzerland, and China.
As a major player in Luxembourg's finance industry and as a signatory of the UN Principles of Responsible Banking, BIL is committed to handing over a responsible and sustainable bank to future generations.Your mission will be to reinforce a team of ICT Risk part of CIO to maintain the bank within its IT risk appetite, by supporting several key ICT and security activities in close collaboration with the CISO team.Your next challenge:
  • Establish and maintain an ICT control framework within the IT function (1st Line of Defense)
  • Continuously monitor of the ICT controls within the organization
  • Participate in the risk assessment on a continuous basis
  • Collaborate with IT teams to ensure IT risk mitigation measures are in place
  • Monitoring and reporting on IT risk exposure
  • Ensure that ICT systems, processes, and security operations are managed in line with the ICT and security framework defined by the CISO
  • Staying updated on industry best practices and regulatory requirements related to ICT and security risk management.
  • Support the implementation of new IT regulations such as DORA, by performing gap analysis, action plan definition, implementation and/or follow-up;
  • Take part in internal and external Audits;
  • Work with highly collaborative agile teams;
  • Maintain good working relations with the other bank teams.
Your skills:
  • Ability to take initiatives and responsibilities;
  • Ability to adapt and anticipate;
  • Effective communication skills to convey security concepts to technical and non-technical stakeholders;
  • Rigor, precision;
  • Customer/result orientation;
  • Strong team spirit;
  • Ability to learn and transmit it;
  • Stay updated on emerging threats and security technologies to proactively enhance the organization's security posture;
  • Knowledge of banking environment is appreciated.
  • Good knowledge of ICT risks, IT Control, Information Security, Business Continuity, IT operations and IT Audit and assessment methodologies and concepts
  • In-depth knowledge of security frameworks, standards, and best practices, such as ITIL, ISO27001, COBIT
  • Experience working with ICT risks, business continuity, IT Management and operations, IT risk and IT audit teams
  • Demonstrated experience in providing complex technology risk assessment in regulated sectors (preferably financial services) including technology upgrades, decommissioning and obsolescence management
  • Ability to articulate risk management concepts in business language
  • Excellent written and verbal communication skills
  • Ability to successfully multitask and complete difficult assignments within deadlines which may have short lead times
  • Master degree in IT or related domains;
  • At least 5 years of experience in IT job (IT security officer, Information Risk Manager, IT Security governance consultant, IT audit, etc.);
  • Related certifications such as CISA, CRISK, COBIT or similar experience.
  • A good knowledge of English and a conversational knowledge of French are required.
BIL offers a broad range of challenging projects and a huge choice of career paths .We will assist you in finding the one that best meets your skills and expectations. Your personal development is our priority and we greatly encourage you to dive into different business areas for the broadest possible experience.
BIL is firmly of the opinion that diversity & inclusion contribute towards increasing the collective performance of the Bank. We are committed to creating a culture of inclusion that encourages individual development with equal opportunities for all.NB: The selected candidate will be asked to provide an extract from the criminal record (no.3) as evidence of integrity and justified with regard to the specific needs of the position to be filled.

Jobs.lu