Information Security Consultant

Company Description

Inetum is a European leader in digital services. Inetum’s team of 28,000 consultants and specialists strive every day to make a digital impact for businesses, public sector entities and society. Inetum’s solutions aim at contributing to its clients’ performance and innovation as well as the common good. Present in 19 countries with a dense network of sites, Inetum partners with major software publishers to meet the challenges of digital transformation with proximity and flexibility. Driven by its ambition for growth and scale, Inetum generated sales of 2.5 billion euros in 2023.

Job Description

We are looking for an Information Security Consultant to join our dynamic team. In this role, you will play a crucial part in developing and implementing security strategies, conducting risk assessments, and ensuring compliance with industry standards. 

Role Overview:

• Develop and maintain information security policies and procedures, aligned with business needs and industry best practices.
• Ensure compliance with IT Management System (ITMS) requirements.
• Develop and maintain the information security risk framework to assess, monitor, and review information security risks for the organization.
• Maintain risk treatment strategies and work with risk owners to manage their lifecycle.
• Manage and implement an information security audit program, ensuring the management of non-conformities and improvement opportunities identified during audits.
• Manage identified vulnerabilities, policy violations, or non-conformities discovered during audits.
• Lead and manage the investigation and response to security incidents to ensure timely and effective containment, eradication, and recovery actions.
• Document incident details, actions taken, and contribute to post-incident reports for continuous improvement.
• Develop and implement security training and awareness programs for employees on best practices, policies, and security guidelines.
• Collaborate with different groups to promote a security-conscious culture.
• Implement and provide regular security reports to top management and other stakeholders, offering insights into the status of information security metrics.

Qualifications

• Background in Information Technology.
• Experience in an Information security role
• Background in Information Security Risks processes and in IT/Information Security Audit.
• Ability to deliver security education and awareness training sessions and material.
• Excellent written/verbal communications skills and organisational skills.
• Knowledge of information security standards and regulations, such as ISO 27001, ISO 27002, ISO 27701, ISAE 3402, GDPR, DORA, and NIS2.
• Cybersecurity knowledge.
• Good level of English