Job Specifications
Can’t wait to make an impact on the world? You’re not alone. Join us in driving progress in the working world and beyond. Your journey with us
The IT Security Compliance officer is
responsible for supporting and assisting in the management of the
organization's IT compliance program. They work closely with IT teams, security
professionals, and other stakeholders to ensure that the organization complies with
relevant laws, regulations, industry standards, and internal policies
pertaining to information security and data privacy.
Key Responsibilities:
Compliance Monitoring and
Auditing:
Assist
in conducting regular compliance assessments and audits to identify gaps and
vulnerabilities.
Maintain
and enhance our ISO27001 certification by supporting external & internal audit
processes and driving continuous improvements in our security posture. This
includes overseeing compliance with internal teams as well as ensuring that our
suppliers and partners adhere to stringent information security requirements
Maintain
documentation of audit findings, corrective actions, and compliance reports.
Policy and Procedure Management:
Assist
in the development, review, and maintenance of IT security policies and
procedures.
Ensure
that policies are communicated to all relevant personnel and that compliance is
tracked.
Work
with teams to align processes with policy requirements.
Risk Assessment and Mitigation:
Conduct
risk assessments to identify security risks and vulnerabilities.
Collaborate
in developing and implementing risk mitigation strategies and action plans.
Regularly
monitor and report on the progress of risk mitigation efforts.
Vendor & Client Security
Assessments:
Support
the assessment of third-party vendors' security practices.
Manage
the completion of client security questionnaires, due diligence requests, and
RFP responses, ensuring accurate and timely delivery of compliance-related
information
Maintain
a record of vendor compliance assessments and findings.
Documentation Management:
Establish
and maintain a system for organizing and archiving compliance-related
documentation.
Ensure
that compliance records are up-to-date and readily accessible.
Assist
in streamlining documentation processes for efficiency.
Compliance Reporting:
Assist
in the preparation and submission of compliance reports to regulatory bodies or
internal stakeholders.
Ensure
compliance reporting deadlines are met.
Generate
compliance dashboards and metrics for management review.
Continuous Improvement
Initiatives:
Identify
opportunities for process improvements based on audit findings and best
practices.
Collaborate
with teams to implement process enhancements.
Monitor
and document the impact of process improvements.
Let's talk about you
Bachelor’s
degree in information security, Computer Science, or a related field, or
equivalent experience gained through professional work.
Several
years of experience in information security compliance, risk management, or IT
audit, ideally with direct exposure to ISO27001 certification processes and
client compliance requirements
You
have an excellent command of English and Dutch, both written and
spoken.
Relevant
security certifications are preferred. (e.g. CISM, CRISC, CISSP… )
Proven
experience in information security compliance, risk management
Strong
knowledge of ISO/IEC 27001 and practical experience maintaining certification.
Good
understanding of governance, risk, and compliance (GRC) frameworks.
Excellent
communication and interpersonal skills.
Ability
to work collaboratively with cross-functional teams.
Experience with GRC tools (e.g.
Eramba) is a plus.
Highly skilled and motivated professionals in our IT Team support with different projects to deliver innovative solutions and with specialized operational guidance to ease our internal clients each day. IT's mission is to embed technology which supports the 'Deloitte way' of doing business, providing a distinctive experience that enables new business, transforms the existing business and provides world class customer support.
Who is Deloitte?
We provide industry-leading audit and assurance, tax and legal, consulting and related services. We are committed to driving innovation across offerings to help our clients address their challenges, while giving our professionals opportunities to learn and grow in this era of transformation.
In Belgium, +5000 dedicated professionals active in +10 offices, take great pride in bringing multidisciplinary expertise to a wide variety of clients, from national and international companies, small, fast-growing and large organizations to public institutions and governmental authorities.
Why Deloitte?
Be the true you! We foster diversity and inclusion and encourage you to bring your authentic self to work. Explore, question and collaborate while building a career that inspires and energises you.
Never stop growing! Diversity of thought makes us stronger. At Deloitte, we tailor a personalized learning experienc
About the Company
Deloitte drives progress. Our firms around the world help clients become leaders wherever they choose to compete. Deloitte invests in outstanding people of diverse talents and backgrounds and empowers them to achieve more than they could elsewhere. Our work combines advice with action and integrity. We believe that when our clients and society are stronger, so are we.
Deloitte refers to one or more of Deloitte Touche Tohmatsu Limited (“DTTL”), its global network of member firms, and their related entities. DTTL (also refer...
Know more