181017/01
The Contraste Europe Group builds strong relations with its clients. It offers a range of IT services such as: Advisory, Solutions, Applications and Infrastructure. The Group’s sector focus is with finance, utilities, public institutions and non-commercial organisations. We are operating on three countries located in Belgium, Luxemburg and France. For one of our major clients in the financial sector, we are looking for an Information Risk Analyst.

Your role: 

The Business Continuity and Assurance team within the Cyber Security Department defines, establishes and provides information assurance. The team manages regulatory adherence for security, supports security response to external RfPs, manages client queries regarding security policies/controls, provides assurance in response to client due diligence, and manages the first-line internal controls framework.

Based on our consolidated of IT Assets Inventory, the objective of the project is to obtain a differentiated view of business applications risk profile according to their Confidentiality, Integrity and Availability, aligned with the company’s Risk Management methodology.

Your main responsibilities:

  • Evaluate the inherent risk of the applications from a business perspective
  • Assess separately the financial impact, the regulatory impact and the client impact in case of respectively confidentiality, integrity or availability incident
  • Ultimately slot the applications in one of the 5 buckets of different risk profile
  • Participate to assessments through workshops with business owners of the applications, business managers, Risk Management and enterprise architects

Your profile: 

  • You handle standard situation by relying on existing procedures and methods, covering several but known domains of expertise.
  • You rely on existing processes and policies to take decisions.
  • You focus on execution in his domain, according to defined processes and methods. Runs and maintains the operational process.
  • You work autonomously on standard activities or non-complex demands. You organise, co-ordinate and plan activities independently.
  • You have knowledge of security risk management, risk governance.
  • You have strong oral and written skills to translate complex risk requirements.
  • You have experience with security and controls frameworks, such as ISO 27001, COBIT5, SANS Top 20 Controls and NIST Cybersecurity Framework.
  • You have experience with audit good practice.
  • You have knowledge of onsite risk assessments, and managing targeted risk remediation activities.

We offer: 

  • A challenging position in a fast growing company with an international presence.
  • A stimulating working environment with a really good team spirit maintained by lots of internal events (teambuilding, ...).
  • A dynamic culture focused on personal development.
  • A wide range of training and career development opportunities.

Interested ?

Please apply now !

Apply online

Files must be less than 2 MB.
Allowed file types: txt rtf pdf doc docx.
Files must be less than 2 MB.
Allowed file types: txt rtf pdf doc docx.
CAPTCHA
This question is for testing whether or not you are a human visitor and to prevent automated spam submissions.