Senior Security Officer (relocation to Luxembourg) in PORTUGAL

We are seeking a talented Senior Security Officer willing to relocate to or currently located in Luxembourg.

Position Overview:

The Senior Security Officer will be part of the Information Security function within the EPPO's Security Unit. This team is responsible for defining security requirements across projects, implementing a security risk management framework, monitoring the application of security measures, responding to security incidents, and staying compliant with EU regulations. The Senior Security Officer will report to the Local Information Security Officer (LISO) and play a critical role in protecting EPPO Classified Information and EPPO Sensitive Non-Classified Information from unauthorized access, alteration, or disclosure.

Responsibilities:

• Conduct risk assessments and recommend security measures for IT solutions within active projects.
• Produce architecture security designs to ensure robust protection of EPPO’s information assets.
• Evaluate security products and tools for information systems, ensuring they meet EPPO's security requirements.
• Assist in the design, communication, and implementation of information security policies, controls, and monitoring measures in compliance with EPPO's regulatory, legal, and contractual frameworks.
• Support the implementation of security tools and monitor the Information Security Management Systemthrough performance KPIs.
• Manage and oversee security testing to ensure system resilience.
• Provide security audits of systems, infrastructure, and databases, ensuring compliance with established security standards and regulations.

Required Knowledge and Skills:

• Master’s degree or equivalent (five years of higher education), or equivalent professional experience.
• Minimum of eight years of professional experience in a similar role, with a focus on information security.
• Proven experience working within EU institutions, specifically regarding the protection of information.
• Strong knowledge of information systems security controls and industry standards, including ISO/IEC 27000 Series and NIST.
• Familiarity with security management methodologies and tools.
• Excellent ability to prepare and write comprehensive security assessments and studies.
• Ability to draft clear, high-quality documentation, including policies, procedures, standards, and guidelines, and present them to various audiences.
• Demonstrated experience in applying high-quality standards in all security-related tasks.
• Capable of working effectively in an international/multicultural environment.

Why Join Us?

• Official full-time employment with an indefinite contract from the start
• Great relocation package
• Health insurance provided
• Hybrid work model: 2 days on-site, 3 days remote
• Access to Udemy Business subscription with thousands of workshops and courses
• Collaborative and innovative work environment
• Engagement in diverse and challenging projects to keep you motivated and enhance your skills