Information Security Officer (m/w/x)

Job Locations BE-Bruxelles
Posted Date 2 months ago(23/08/2024 13:21)
Job ID
2024-1170
# of Openings
1
Category
Information Technology

Overview

Who are we?

PRIVANOT is a notarial institution established by the Royal Federation of Belgian Notaries (FEDNOT) to provide a response to the needs of notaries and notarial institutions in the areas of data protection and information security. To date, hundreds of notary offices have entrusted their data protection to PRIVANOT.

With 14 employees and extensive expertise—both legal and in the field of information security—PRIVANOT also offers services to several prestigious and renowned national and European organizations, mainly from the public sector.

PRIVANOT is located in the heart of Brussels, near the Central Station, and offers a pleasant, bilingual, and stimulating work environment.

 

Information Security Officer – PRIVANOT (m/f/x)

(Full-time) – Brussels & remote work

 

Are you passionate about information security and eager to play a key role in the protection of personal data? Join PRIVANOT as an Information Security Officer (ISO) and actively contribute to GDPR compliance and the security of our clients' information systems. As ISO, you will be the principal advisor on information security, working closely with internal teams (legal, operations, etc.), data controllers, and IT suppliers.

 

Your Main Responsibilities

As an Information Security Officer, you will have a versatile and strategic role, which includes various responsibilities:

 

Advice and Guidance:

  • You will serve as the point of contact within PRIVANOT, as well as for data controllers and their IT suppliers, on matters of information security related to data protection.

Documentation/Reporting and Incident Management:

  • You will prepare high-quality documents related to information security, both for the organization and the data controllers we work with, such as documents necessary for conducting security audits, various policies and procedures, training preparation and execution, and all other aspects required to meet the security obligations of the data controller.
  • You will actively participate in managing data breaches and conducting Data Protection Impact Assessments (DPIAs).

Development and Innovation:

  • You will contribute to the development of new services in the field of information security and help create new perspectives for PRIVANOT.
  • You will collaborate in drafting strategies, together with the notarial profession and entities like FEDNOT's Infosec department and the National Chamber of Notaries, to ensure security within notary offices, considering European directives and the notaries' code of conduct.

Training and Awareness:

  • You will prepare and deliver training sessions to raise awareness among internal and external teams about the challenges of information security.
  • You will proactively provide information security recommendations, both for PRIVANOT and for the data controllers we work with.

What Profile Are We Looking For?

To successfully carry out your tasks as an Information Security Officer, you should:

  • Hold a bachelor’s or master’s degree in computer science;
  • Have at least 5 years of experience in a similar role related to information security;
  • Be fluent in French or Dutch and have a very good knowledge of the second national language, as well as technical proficiency in English, both spoken and written;
  • Possess in-depth knowledge of technical systems and information security standards (ISO 27001);
  • Have a strong ability to analyze, evaluate, and manage risks related to processing activities based on the nature, scope, context, and purposes of these processes;
  • Be capable of delivering training and raising awareness among various audiences about the challenges of information security;
  • Be motivated to work in a multidisciplinary team where you will be the principal advisor on information security.

What Do We Offer?

As an Information Security Officer within our organization, we offer:

  • The opportunity to work on enriching projects with the latest methodologies and technologies in a growing, economically stable, and sustainable sector;
  • The chance to deepen your legal, IT, and practical knowledge in the field of GDPR;
  • A stimulating work environment that fosters creativity and autonomy;
  • A role in an ever-evolving multidisciplinary team;
  • A competitive salary package with numerous extra-legal benefits, including insurance, meal vouchers, a bonus system, and a company car.

What Are the Working Conditions?

We offer a working regime of 37.5 hours per week with the possibility to work from home 1 to 3 days per week.

 

Where Are Our Offices?

Our offices are located at Bergstraat 30, 1000 Brussels. They are easily accessible by public transport (metro and train) and by car.

Job Overview

The job

The Information Security Officer has a key mission: to promote and reinforce the information security in the notary sector.



The security officers are part of a small team and enjoy a varied job:

we advise project teams on security matters (“Security by Design”);
we perform penetration and vulnerability testing;
we make users and managers aware on the cyber threats;
we monitor user and system activities;
we respond to cyber incidents of various origins;
we keep an eye on the evolution of cyber security landscape.


You want

To perform penetration testing at the application/service level on demand or pro-actively;
To perform infrastructure vulnerability testing;
To report your test results to different audiences;
To explain the security risks to the management;
To help developers to find fixes;
To react to reported security incidents;
To advise project or product teams to design applications with security in mind;
To contribute to a dynamic and constructive security culture in the organization.


You have

A Bachelor or Master degree or equivalent by experience;
At least 5 years experience in an “IT environment”;
At least 2 years of experience in IT security and preferably experience with application security testing;
At least 2 years of experience in security incident management (documentation, assessment of severity and urgency and explanation to users);
Thorough understanding of information technologies, data security and network concepts;
A good understanding of the risk- cost or user convenience balance;
You know the top-10 OWASP risks: how to test an application against these risks;
You have experience in reporting pen test results to project teams;
You are familiar with pen test tool like Burp Suite;
You know how to conduct network port scanning;
You have experience with vulnerability scanning tools;
A good understanding of Data Privacy and GDPR;
A good understanding in information security frameworks (CIS, NIST, ISO27000) … it’s a plus!
Information security certifications such as: CEH, CISSP, OSCP … it’s a plus!


You are

Fluent in FR or NL with a good knowledge of IT related English (full working proficiency in both languages is preferable as customers are FR & NL);
Autonomous, analytic, organized and self‑driven;
Able to communicate fluently with different audiences;
Able to take a challenging but constructive attitude;
A good team player: team objectives prevail over individual objectives;
Eager to learn about security, technology and our business context.


Where are you going to work?

Brussels & Homeworking (hybrid)



We offer...

Challenging and stimulating work environment, using the latest technologies.
Fostering a creative, autonomous and open atmosphere, within a growing and economical stable sector.
Room for future personal development and creativity
Competitive salary package, extralegal advantages, insurance coverage, car, bonus and net allowance, public transport, luncheon vouchers.

Options

Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on your newsfeed