The Information Security Team Department, at Euronext, aims to preserve the Confidentiality, Integrity and Availability of information by applying a risk management process.
Nonetheless security can span across all areas of business, the Infosec GRC Governance, Risk and Compliance division is engaged in all areas of the business at Euronext.
The team is engaged to handle and manage IT audits and risk assessments, third party reviews, compliance checks, and matters of both regulatory and legislative impact including matters relating to but not limited to : data privacy, cyber legislation, and corporate security best practices.
Managed by the GRC division within InfoSec, candidates in this position will find themselves exposed to and working with governance, awareness, communication, security controls improvement and risk management activities, innovation in cybersecurity protection and identification.
Being part of high regulated company, candidates will work closely to manage and follow up compliance topics related with GDPR, MIFID, NIS-D, LPM, CSD-R and other resulting from the voluntary adoption of well-known information security frameworks.
With a broad spectrum of knowledge and subject matter expertise across all areas of Information Security candidates will operate within a pool of talented InfoSec specialists supporting projects and initiatives as needed.
Candidates operating in this role will find themselves working alongside senior colleagues within the GRC division.
Engage and track Infosec challenges.
Engage with internal stakeholders and follow-up with required action plans.
Evaluate trending cybersecurity controls, communication, awareness, risks and promote control measures.
Critical analysis of existing security controls and promoting security improvements.
Assisting with fine-tuning security controls.
Assisting with risk management handling activities.
The ability to handle, track, review, and orchestrate the tickets / tasks received by GRC. Ensuring that are followed up with the appropriate division / staff within InfoSec.
Identify and document business processes and from an Infosec perspective propose improvements for perceived weaknesses.
Act as a model for information security and promote the security culture within the company.
0-1 years’ experience working in an InfoSec role :
Where no working security experience or industry certifications exists (university leaver, etc.), then a solid academic qualification within the Information Security field is a must.
Experience within the financial sector will be a considerable benefit.
Security industry certifications will be a benefit.
Candidate Criteria :
Excellent organizational skills
We are proud to be an equal opportunity employer. We do not discriminate against individuals on the basis of race, gender, age, citizenship, religion, sexual orientation, gender identity or expression, disability, or any other legally protected factor.
We value the unique talents of all our people, who come from diverse backgrounds with different personal experiences and points of view and we are committed to providing an environment of mutual respect.
This job description is only describing the main activities within a certain role and is not exhaustive. It does not prevent to add more tasks, projects.