Risk Advisor

Division CISO 

Risk Advisor

Euroclear is a global critical financial infrastructure company. Security is at the core of the company’s services, firmly embedded in their management systems and processes. Our department provides impact analysis, security risk assessment, security requirements, design validation for all IT projects in Euroclear, regular security assessments of Euroclear applications and the underlying infrastructure! We also support Euroclear’s compliance activities by reviewing and publishing secure configuration baselines and by coordinating the Security Exception Review Board. Finally, we provide consultancy for anyone in Euroclear for any IT security related question!

Required Technical and Professional Expertise

We are looking for Cyber & Information Security experts to strengthen our team in our Brussels office with experience in one or more of the following areas: 

• Proven expertise in security risk assessments, development of functional security requirements, process design, and management reporting.
• Familiarity with industry best practices in key security domains, including identity and access management, PKI, network security, and data protection.
• Application security knowledge, with a solid grasp of software development and testing, OWASP guidelines, code scanning tools, and security and compliance automation using a CI/CD pipeline.
• Proficiency in security technologies such as IDAAS (Identity as a Service) and identity management platforms, secure access management, federation services, PKI, cryptographic solutions, web application firewalls, and endpoint security.
• Knowledge of domains such as virtualization, software-defined networks, Cloud IAAS/PAAS/SAAS, network and DMZ infrastructure, VOIP, Wi-Fi, 802.1x, anti-malware, system protection, middleware, collaboration, end-user workspace solutions, storage (SAN, NAS), databases, and infrastructure automation services (Infrastructure as a Code).
• Preferred professional certifications include CISSP, GIAC, SABSA, and ISO 27001 LA/LI. Specific certifications related to security products are also nice to have.

Your Responsibilities

• Define and recommend on the design, implementation and test processes vital to protect information system assets.
• Perform risk assessments and translate the security architecture and high-level policies and controls towards security requirements (secure by design) for business and IT projects.
• Contribute to the architectural design and validate it against the security requirements.
• Define security testing requirements and penetration test scope, actively support the testing teams to perform these tests and approve the test reports.
• Define, implement, and ensure the accurate functioning of security services of our department in line with IT security policies.
• Recommend and advise on new or improved security services towards the division management.
• Produce documented security services, technical standards, or principles.
• Act as a security specialist within a certain domain (for example Mainframe security, PKI and Cryptography, Network security, platform security, IAM, application security or secure coding), being the point of contact for both business and project teams. Your partners are mainly the business owners/analysts, project leader, risk management, internal/external auditors, and off course the engineers, developers, and architects.

Your Profile

• University degree or equivalent experience in Computer Science, Engineering, or similar degree.
• IT-security professional with demonstrable experience in the infrastructure security domain or in the IT application security domain.
• Depending of the experience level, a senior profile has at least +10 years’ cyber security experience covering multiple disciplines, the candidate has worked for multiple companies/cross industries. As an entry level profile, the candidate we’re looking for has minimum 3 years’ experience in cyber security in one domain.
• Good understanding of documentation and presentation applications including PowerPoint, Visio, Excel, and Word
• Experience translating business requirements into technical solutions.
• Effective interpersonal, planning and time management skills.
• Effective research, analytical, and problem-solving skills.
• Proficiently exercises initiative and makes well-informed decisions, maintains accuracy while paying close attention to detail and meeting target dates and convey findings, conclusions, alternatives, and information in a clear and concise manner.
• Able to operate within an international/multi-cultural, networked environment.
• Proficient in English
• Great teammate who communicates in an open, encouraging, and constructive way with customers and peers, both verbally and in writing.
• Good interpersonal skills, being able to discuss, defend and translate security topics with both senior business people as with deep technical IT experts.
• Ability to handle different projects and cope with pressure and stressful situations.
• Take ownership and ensure that the company quality standards are met.
• Independent, service-minded and organized.

#LI-NS1

Why join us

Embark on your new adventure at Euroclear, and work at the heart of the global capital markets. We connect over 2,000 financial institutions across the globe. As an open and resilient infrastructure, we contribute to the stability of the financial markets. We help clients cut through complexity, lower costs, and mitigate risks of financial transactions. At Euroclear, we have the clear ambition to use our key role to facilitate and accelerate a sustainable global financial system. 

What We Offer:

• Work closely with inspiring, supportive and engaged colleagues from more than 80 different countries. 
• Practice your talents in a highly professional international environment. 
• Join a learning and development environment with an emphasis on knowledge sharing and training.
• Competitive salary and comprehensive benefits.

New ways of working

Find your own optimal balance within our hybrid working model, where you can connect at the office and also benefit from remote working. 

Great Place to Work for All

We are committed to creating an inclusive culture that celebrates diversity and strives to be a Great Place to Work for All. All qualified applicants will be considered for employment, regardless of any aspect that makes them unique (including race, religion, national origin, gender, sexual orientation, age, marital status, pregnancy, disability, ...). If you need any specific accommodation due to disability or any other reason, you can let the recruiter know during your application process.