Header

Information Security Advisor Ernst&Young

1:31:00 PM

Ernst & Young helps companies in businesses across all industries  to identify and capitalize on business opportunities. Our 141,000 people in more than 140 countries worldwide can implement a broad array of services in audit, tax, corporate finance, transactions, online security, enterprise risk management and other critical business-performance issues. In Belgium, Ernst & Young counts 1300 employees.
Our advisory department offers advice in the following domains:
 
  • Performance improvement (PI)
  • IT Risk Assurance (ITRA)
  • Risk
Our IT risk and assurance professionals help organizations address the challenge of managing IT risks in a way that is in line with their business strategy. We offer tailored services, covering IT risk assessment and management, security and privacy through to review of controls over specific enterprise resource planning (ERP) systems and third parties. Our professionals provide independent, impartial assistance in IT and across the business, bringing insights from our work with commercial and government organizations, as well as knowledge of industry leading practice, regulation and financial audit requirements.
 
In order to pursue our growth within our subservice line ITRA , we are currently looking for an Information Security Advisor
 
Tasks & responsibilities
 
You will be part of a team providing Information Security services to a wide range of clients in different non-financial industries, both nationally and internationally. Taking into account your experience and maturity, your involvement will vary from assisting in delivering security projects to acting as a subject matter expert on them or to leading a team towards excellent client experience. Furthermore, you may be involved in pro-actively identifying and pursuing opportunities for further business and team growth.
 
The services you will provide are depending on your background, knowledge and interests, but will be structured around following domains and will range from assessing the current situation to advising clients how to improve their information security practices:
 
  • Security Program Management (e.g. development of information security strategies, set-up of a security organization, security metrics and reporting…)
  • Threat and Vulnerability Management (e.g. attack and penetration / ethical hacking, incident response, secure development …)
  • Identity and Access Management (provisioning, roles and rules management, access management governance…)
  • Information Protection and Privacy (e.g. data protection strategy, privacy impact assessments …)
 
We are currently looking for a (junior) information security advisor (1-3 yrs experience) in order to join our team.
  • Bachelor's or Master’s Degree
  • You have relevant experience (1-3yrs exp)  as an information security practitioner, either in the assessment or implementation of aspects related to the domains of responsibility
  • You are able to manage tasks and projects independently and follow-up on delegated tasks to other team members
  • You are able to communicate effectively with both IT and business people about information security matters
  • You have an analytical mindset, strive for quality and are able to work in a result-oriented environment
  • Possession of relevant qualifications are an asset, such as:

CISM (Certified Information Systems Manager)
  • CRISC (Certified in Risk and Information Systems Control)
  • CISSP (Certified Information Systems Security Professional)
  • CIPP (Certified Information Privacy Professional)
  • ISO 27001 Lead Auditor/Implementer
  • BS25999 Lead Auditor/Implementer
  • Specific ethical hacking certifications
  • You have knowledge of and experience with relevant industry security standards and frameworks, such as
ISO 2700x – ISF – BS25999 – ISO 22301 – COBIT – NIST – OWASP – GAPP – SABSA …
  • You are active in local or international information security community (e.g. OWASP – L-SEC - ISSA – ISC2 - ISACA – IAPP) is a plus
  • You are fluent in Dutch, French and English
  • Experience in following sectors is a plus:
Telecom
Healthcare
Governmental institutions
Power and Utilities
 
Offer
 
  •   An intellectually challenging role within a leading international company
  •   Growth potential in a dynamic and diverse team
  •   Personal development. All of our professionals receive comprehensive training covering business acumen, technical and professional skills development
For momre details and to apply, please click here.

Post a Comment