IT Security Officer LU

Postuler »

Date: 2 févr. 2023

Lieu: Luxembourg, LU, 2453

Entreprise: Degroof Petercam

With 150 years of history, Degroof Petercam is a leading financial institution owned by family shareholders with a long-term commitment since 1871.


Whether they are private or institutional investors, its clients benefit from a unique combination of services combining wealth management, administration and management of collective investment schemes, financial market operations and financial engineering.


Present in Luxembourg since 1987, Degroof Petercam Luxembourg employs more than 370 staff spread over three entities located in the area of La Cloche d'or: Banque Degroof Petercam Luxembourg S.A., Degroof Petercam Asset Services S.A. and Degroof Petercam Insurance Broker S.A.

Missions & responsibilities

  • You participate in the group IT Risk & Security committee, representing the LUX scope
  • You challenge, advise, monitor all IT related activities throughout key IT projects and Lifecycle program
  • You identify, assess and manage risks linked to Information Technology (confidentiality, availability, integrity)
  • You define and follow implementation of IT security procedures standards or guidelines, aligned with Group IT security strategy in order to protect organization’s computers, networks and data against threats, such as security breaches, computer viruses or attacks by cyber-criminals
  • You serve as the chief point of contact for our Technology Risk Management & Information Security team
  • You provide support for assessing risks in technology related initiatives with risks and red flags identified during defined intake procedures
  • You assist in the definition of new metrics monitor Key Risk Indicators (KRIs) against Degroof Petercam technology risk appetite
  • You prepare the first line Risk report and track actions to reduce technology risk
  • You assist with the Technology Risk reporting operations, including scheduling key monthly meetings, monitoring key milestones, escalation of past due activities, problem triage and management, and archiving key monthly artifacts for audit purposes
  • You contribute to the review of internal processes and activities and assist in identifying potential opportunities for improvement
  • You influence behavior to reduce risk and foster a strong technology risk management culture throughout the enterprise
  • You produce dashboard & reports in order to give visibility on current IT Risks and IT Security status


  • You are expert in IT security, risk disciplines and practices including vulnerability management (Nessus Tenable, Qualys or IBM QRadar)
  • You have a significant experience with European and Luxembourg regulatory requirements (ECB, EBA, NBB, CSSF, …)
  • You have an advanced knowledge in industry frameworks and standards (NIST, ITIL, ISO27xxx, SANS CIS20, …)
  • You demonstrate ability to participate in complex, comprehensive or large projects and initiatives
  • You have sound communication skills both in writing and speaking
  • You are stress resistant and you are known for your ability to manage crisis situations
  • You are fluent in French and English mandatory (both written and spoken)

To guarantee his good repute, the candidate must provide an extract from his criminal record before any hiring. 


The regulations relating to the protection of personal data, concerning the processing and preservation of the personal data of the employer's workers, are applied through the "Data Privacy Policy" and the "Employee Privacy Charter" in force. , available on the company's website: