The Etex Group with headquarters in Brussels is a leading industrial group, specialized in production and marketing of high quality building materials and solutions. As international top player, Etex is active in 42 countries in which they can count on the loyalty of more than 16.000 employees.
Because IT security and risk management becomes more and more important in our digitalized world, Etex IT wants to extend the Office of the CIO with an IT Security and RiskManager position.
The IT Security and Risk Manager is responsible for defining and implementing effective and adequate processes and procedures and IT security plans to secure the systems and data provided by Etex IT to Etex companies. This includes: Physical security of hardware and infrastructure, logical security of off-site infrastructure, applications and data, system and data backup and disaster recovery, IT Controls and IT risk management.
Perform IT security assessments, and propose remediation for weaknesses and vulnerabilities that are found (prioritize, follow up remediation, etc.)
Create better awareness of current and developing information security regulations, technology, and threats and provide relevant training in relation to IT security related matters.
Design and management of regular IT security reviews to ensure best practice and policies are being followed and provide ongoing education and advice to end users.
Work with Business Management, Internal and External Audit to agree appropriate levels of control to mitigate risk.
Design and management of the Business Continuity / Disaster Recovery planning procedures and testing these procedures with business counterparts on an annual basis.
Management of the process for authentication and authorization to IT systems, like adding, deleting and changing User Identifications (ID’s & passwords), and ensuring segregation of duties..
IT Security and Risk management for enabling the business via secure IT processes, systems and governance (ID and threat management, threat detection and prevention, IT security incident management).
Excellent interpersonal and written communications skills.
Leadership abilities and communication skills that will come into play to strike a balance between business and security requirements and to persuade executives to approve any necessary security projects.
Required knowledge and experience:
Master in IT, IT security, Electronics or Engineering, or Bachelor’s (with at least 5 years of practical work experience) degree.
More than 5 years’ experience in IT security and risk Management, incl. security architecture design, security document creation, employee security awareness, Business continuity plans and Disaster recovery plans, User ID and password management for Wintel, Lotus Notes, Remote VPN and SAP systems.…
By preference one or more of the following certificates:
CISM – Certified Information Security Manager (ISACA certification)
CRISC – Certified in Risk and Information Systems Control (ISACA certification)
CISSP – Certified Information Systems Security Professional ((ISC)2 certification)
Fluent in English (written and oral) and by preference one or more language used in the Etex group (Dutch, French, Spanish, …)
Based in Kapelle-op-den-Bos (Belgium), but working with virtual teams that are spread globally.
The Etex Group with headquarters in Brussels is a leading industrial group, specialized in production and marketing of high quality building materials and solutions. As international top player, Etex is active in 42 countries in which they can count on the loyalty of more than 16.000 employees