Functieomschrijving

GOVERNANCE RISK & COMPLIANCE OFFICER

Bedrijfsdetails

What began as a small family business has today grown into an international provider in the field of Quality of Life services. Sodexo offers an extensive range of services that enhance the wellbeing of people, such as the maintenance of technical installations, reception, cleaning, management of green spaces, catering services and Sodexo Benefits & Rewards Services. Sodexo Benefits & Rewards Services in Belgium is the preferred partner of private and public companies for a whole series of staff vouchers and services (Lunch Pass®, Cadeau Pass®, Sport & Culture Pass®, Eco Pass®, SME portfolio, Training Vouchers, Surf@home, Incentive & Recognition, etc.) and of private individuals for Service Vouchers.

We firmly believe that the Quality of Life of our clients and service consumers begins with our own people. Consequently, your wellbeing at work is one of our priorities. At Sodexo, you are part of a stimulating environment, where you can develop your talents and where you can count on continuous help and guidance for your career. With some 250 colleagues spread around Belgium (48% of whom are women), you are the key to our success. Are you looking for a highly interesting job in a stable company? Then the job detailed below may be right up your street.

Our mission at the IS&T Department is to enhance our business. In order to reach our goal, we have to set up and manage highly accessible hybrid environments, such that high volumes of transactions can be handled securely. Our industry evolves at a fast pace. This challenges us to keep abreast of new developments in digitalization, security, compliance to regulatory requirements, new technologies (IoT, Blockchain, ePayment, …),

To support our position as a market leader in Belgium, being part of a reputable international group, our size and our teams’ experience our mission to invest in the future, we are looking for :

GRC Officer (M/W)

Functie

Your mission

  • Define, implement, operate and maintain the local Information Security Governance, Risk & Compliance.
  • Report to the local CISO, CIO and Executive Committee.

Your main responsibilities

Information Security & Technology Governance

  • Define, implement and maintain the local Security & Continuity policies, governance and processes in accordance with Group security policies, internal control and market standards,
  • Develop 3 lines of defense,
  • Raise and maintain awareness within the organization of IS&T Governance, Risk and Business Continuity,
  • Define & monitor information security performance and risk indicators (KRI & KPI’s),
  • Answer clients & supplier’s questionnaires.

IT Risk Management

  • Develop IT risk management framework based on market standards,
  • Develop IT risk culture within the IS&T department & the executive committee,
  • Advise ExCo and IT management regarding IT risk & security decisions,
  • Conduct IT security & compliance risk assessment,
  • Monitor and report the top IT risks of the company.

Business Continuity

  • Conduct BC risk assessment,
  • Conduct BIA with the support of ExCo & experts,
  • Develop, maintain and test BCP’s as per business requirements,
  • Advise on BC in project development and in supplier management,

Disaster Recovery

  • Develop, maintain and test DRP’s as per business requirements,
  • Advise on DR in project development and in supplier management,
  • Monitor and report the overall DRP readiness of the company and its critical suppliers,
  • Monitor market trends on DR capabilities.

IS&T Compliance

  • Ensure regulatory compliance of the information system and data,
  • Ensure compliance with the internal codes of conduct, policies and procedures,
  • Ensure compliance with clients, customers and partners contractual agreements,
  • Support local DPO to develop and maintain the Data Privacy Program,
  • Support internal control for IS&T compliance matters.

Profiel

  • At least 5 years of experience in a similar role
  • Proven experience in Governance, Risk & Compliance, GDPR
  • Knowledge and experience of frameworks such as ISO 27k, ISO 22301, ISO 31k, ISO 20k, COBIT, ISF,
  • Possession of certifications such as CISA, CRISC, CGEIT, ISO 22301 LI, ISO 31000 LI, ISO 27k LI,
  • Pragmatic and result oriented
  • Ability to engage with technical and non-technical audiences at various levels
  • Able to work autonomously and appreciate teamwork
  • Assertive, constructive, and proactive team player
  • Strong analytical and solution-oriented skills
  • Excellent communication skills, both in writing and in presenting
  • Fluency in Dutch and/or French, with a proficient level of English

  • Online op:do 17 december 2020
  • Locatie: BRUSSELS AND WORK FROM HOME

Sodexo - Benefits and Rewards Services

Pleinlaan 15 Boulevard de la Plaine
1050 Brussels
België

Interesse?

Voor meer informatie:
Bel LINDA DE COENE
op het nummer: 0
Even geduld, uw aanvraag wordt verwerkt
Mail naar uw vrienden
Mail(s) succesvol verstuurd
Er is een fout opgetreden, gelieve contact op te nemen met uw systeem administrator
[sluiten]