EMPREGO

Head of Security

Pluxee-Brussels, Bélgica

Société:
Pluxee is the leading global partner for employee benefits and engagement. We're opening a world of opportunities for everyone, and our new brand is brimming with ambition for the future! We are committed to working sustainably and responsibly with local communities.

We provide over 250 pioneering products in 31 countries and partner with 1.7 million traders. This helps our employees better enjoy what truly matters in their lives.

At Pluxee, we take pride in our commitment to environmental sustainability, our focus on fair employment and diversity, our new ways of working independently, and flexibility for the well-being of our talents. Joining us means evolving in a collaborative and innovative environment where each employee is recognized and receives the necessary support for their development. We firmly believe that the quality of life for our customers and service consumers begins with our own employees. Therefore, your well-being at work is one of our priorities.

Working with us is an opportunity to impact the future of the employee experience and ultimately the world around us. But it's also your chance to make an impact every day by investing a part of yourself in exciting digital products and touching the lives of millions of consumers.

We are a global and multicultural company where every contribution counts, and every day is an opportunity to inspire others and be inspired by your colleagues.

We're accelerating our global growth by combining the scope and stability of Pluxee with our unique position as an innovation incubator. As a member of the team, you'll help us continue this growth and historical digital transformation.

Today, we're inventing entirely new ways to influence and enrich the lives of employees worldwide.

Fonction:
Your mission:
The local Head of IT Security is responsible for defining and implementing the local Security Policy, in accordance with Group Security Policies and internal control. He is in charge of defining and implementing the Security Strategy, Policies & contributing and validating processes within its scope of responsibilities. He manages incident response, in coordination with the Region and the Group Security. He shall guarantee the security, confidentiality, integrity, traceability and regulatory compliance of the information system and data.

The local Head of IT Security will report to both the Pluxee Global CISO & local CIO.

Your main responsibilities:

  • Defines and implements the local Security Policy (ISMS), in accordance with Group Policy and internal control
  • Responsible for the implementation of the enterprise information security program, it’s strategy, policies & processes
  • Manages incident response, in close coordination with the Heads of Region and Group Security
  • Guarantees the security, confidentiality, integrity, traceability and regulatory compliance of the information system and data
  • Be the liaison between the business, partners, internal control, and information security functions
  • Responsible together with CIO on the decision making on enterprise security matters and project security decisions
  • Responsible for the definition of Information security KPI’s, and communication of review reports to senior-management & executives
  • Be able to translate business objectives into information security requirements
  • Have an accurate understanding of the business strategic vision
  • People Manage a Security Team of 6 people

Adapt, communicate and implement the Group Information Security Policy locally

  • Coordinate with Group Security, Internal Control & Internal/External Auditors
  • Adapt the policies & define procedures related to security
  • Communicate policies & procedures to relevant stakeholders and ensure proper implementation
  • Create security aware company culture by raising overall security awareness
  • Present risk, security & technical concepts in a relatable and convincing manner to senior management & executives
  • Regularly inform management & stakeholders on kpi’s & progress of information security management system & risks

IT Security Risk Assessment

  • Contribute to Projects ensuring appropriate security measures are implemented in accordance with group policy on the integration of security in projects
  • Evaluate risks, threats & potential impacts
  • Contribute to the coordination of mitigation actions
  • Assess external suppliers and work with legal to include appropriate provisions in contracts
  • Monitor progress and proper implementation of internal & external Audits.
  • Support Data Privacy Program and work in close collaboration with legal and local DPO
  • Identify local or legal constraints and I&S Security exceptions specific to its context
  • Reporting relevant risks, incidents, and plans to the Pluxee Regional Security Manager

Operational protection of the Information System
- Relays Infosec communications, ensure appropriate actions are taken &