DATA PROTECTION GOVERNANCE
Descrição da oferta de emprego
- live or want to live in Belgium - Fluent English Division.
Cyber-Security is at the core of the company’s services, firmly embedded in their management systems and processes.
The Data Protection Governance team is part of the Cyber Information Security Office Division and is in charge of the set-up and the monitoring of a data protection control framework based on the CIS Top20 plus a couple of other regulations applicable to trusted FMI’s.
Role.
This is a security analysts role where you will define, require and monitor the applicable cyber-security controls to protect different data sources according to data attributes such as the classification, criticality, nature of the data and the storage as well as the location (on-premise or in the cloud).
In the Data Protection Governance Team, we are expected to.
- Design the cyber-security data protection controls for detection and prevention such as Data Leakage Prevention, Encryption (data at rest, in motion, in use), Signing, Digital Right Management, Backup/Restore & Archiving, Data Access Governance, Data anonymisation, - Require the implementation of these controls to the data owners with the control objectives to meet - Assess a security risk in data protection from both a conceptual and a technical level - Monitor the implementation of these controls to the data sources - Collect the evidences of the control efficiency - Communicate the evidences upon request from the internal or external Audit, the regulators or for the yearly ISAE exercise - In these context the collaboration is crucial with the different teams involved in security risk management - Partner with representatives of Cyber-Security, IT, Risk, Audit and other key business teams to advance data protection initiatives.
- Develop a high-level of trust with stakeholders to ensure on-going commitment.
- Foster a team environment, open to communication and collaboration.
Qualifications, Skills and experience.
A combination of several of the below should be covered.
- IT-security professional with solid experience in the infrastructure security domain, in the IT application security domain or in the data security domain.
- Extensive knowledge of market standard control framework like the CIS TOP20, NIST Rev.
, ISO , SWIFT CSCF, FISR (aka FML) - Knowledge of Data Protection controls such as encryption (DAR, DIM, DIU), data hashing, data signing, data anonymisation, DRM, DLP, CASB, data access governance, etc.
- Experience in IT Risk Assessment, Control efficiency check-up and risk management - Understand the difference between an inherent risk, a residual risk and an inefficient control; risk addressing and risk mitigation - Experience with SQL, data modelling and technical documentation - Cybersecurity training and certification in CISSP, CISA, SSCP, GSEC, SANS or equivalent is a plus.
Interpersonal Skills.
- Able to solve complex problems - Creative and sees the bigger picture when addressing issues - Team player, hierarchy respectful - Works proactively, thereby keeping possible problems from affecting the overall functioning of the team and make sure the team is successful to deliver the solution - Proficient oral and written communications skills in English, sharing strategy and vision with both peers and management.
- Drive and energy, entrepreneurial attitude, hands-on mentality What can you expect from us? Mind-blowing workplace culture.
You will be integrated in a professional, dynamic and collaborative team.
100% Remote opportunities We want you to have the flexibility to work where you feel most comfortable and productive.
International Career You can expect professional growth and to be connect with the world.
We are represented in 2 European countries.
Portugal and Belgium.
And with projects in many other countries.
Netherlands, Luxembourg, Singapore and in the United States of America (and a lot more is coming…) Extra Benefits & Perks If you wish to work with us and you are outside European Union (good news…) we are a Tech Visa Company, We will help! As a plus, we provide Health and Life Insurance.
Bridge351 is proud to be an equal opportunity employer.
We are committed to build a diverse and inclusive culture and celebrate authenticity.
We do not discriminate on the basis of race, religion, color, national origin, gender, gender identity, sexual orientation, age, marital status, disability or any other legally protected characteristics.
Detalhes da oferta
- bridge351
- Em todo Portugal
- Indeterminado - Indeterminado
- Indeterminado
- 25/02/2025
- 26/05/2025
Fórum selecção is looking for a senior data engineer (m/f) for a corporate bank main activities: - design high-performance data pipelines (etl) to feed a dwh using state of the art data engineering techniques according to business specifications; - implement flow automation through ci/cd pipelines and......
Fórum selecção is looking for a records management office (m/f) for a corporate bank main activities: - maintain and update rmo (records management office) policy, procedures and retention schedule;- support the automation of manual processing of regulatory and non-regulatory records;- oversight of day-to-day......
@confidentialnote: mne library of python will be used to explore, visualise and analysehuman neurophysiological data... ● clinic needs to click on “stop data stream” to stop the recording, after thesession is completed... ● once the board is set up, the clinic needs to click on “start data stream” tostart......
We also inform you that your data will be kept in the company for a period of 5 years... js (3+ years) experience with web applications (backend), distributed systems and apis preferred additional skills and experience: experienced in devops and promoter of automation mvc, jsf, jsp, j2ee, oo, distributed......
Asap: next starts: 20th february or 20th march tasks: · review user reports regarding video content on a streaming platform review sensitive content, sometimes involving graphic or disturbing subject matter audit and update content maintain broad knowledge of client products and/or services make well-balanced......
Prazo de validade: 18 (dezoito) meses, a contar da data da homologação da lista de classificação final, ou antes, pela colocação de todos os candidatos... subsistindo situações de igualdade de valoração, aplica-se a primazia na submissão da candidatura – data e hora – contadas desde a última alteração......
Os e-mails recebidos após essa data não serão tratados... precisamos de admitir auxiliar de ação direta para serviço de apoio domiciliário: oferecemos contrato de trabalho... a pessoa deverá ter os seus papéis de identificação regulamentados... é mesmo necessário ter carta de condução para poder optar......
Develop and execute recruiting plans network through industry contacts, association memberships, trade groups, social media, and employees develop and track goals for the recruiting and hiring process coordinate and implement college recruiting initiatives handle administrative duties and recordkeeping......
Contacting new and existing customers via telephone and email on a daily basis, identifying sales opportunities acquiring new advertisers within the small and medium business (smb) space consulting with clients to provide the best solution for their business goal and use existing client data to provide......
Outros dados de posição #getready to meet with us! ready to code the future? apply with your cv in english/portuguese and agree to personal data processing: *****@*****... net developer, you'll craft cutting-edge digital solutions for our clients, revolutionizing user experiences... net applications......