Location: Europe (Paris, France)
He/she will establish and maintain the information security program to ensure that information assets and associated technology, applications, systems, equipment, infrastructure and processes are adequately protected against threats. The Security Expert will define and own the security processes and controls embedded in the operational processes and controls; as well as define and execute the appropriate second line assurance activities to monitor, control, report and manage all information security related activities and events. He/she will lead the Information Security practice, driving awareness, providing training, collaborating with colleagues and units at all levels to support cybersafe advancement of Business Objectives.
Main responsibilities:
• Develop, implement and maintain the EBA’s Information Security Framework in accordance with EU institutional rules, Security Frameworks and information security best practices;
• Facilitate the EBA Information Security Governance structure that enables EBA Senior Stakeholders to be informed on key Enterprise Information Security Risks, approve and review the Information.
Security Book of Work;
• Perform Information Security risk assessments, inspections and reviews on technology assets,
solutions, systems and processes holding, storing or processing EBA data, including Vendors and Partners and their interfaces and contracts. Own and lead the Information Security Incident Response for the Agency, while maintaining a central incident register for the organisation;
• Manage and maintain a targeted information security awareness training program for all
employees, contractors and approved system users, and establish metrics to measure the
effectiveness of this security training program for the different audiences;
• Advise management and staff on information security related matters;
• Contribute and maintain the EBA Business Continuity Plan; refine and lead the implementation of effective disaster recovery procedures and process, including their regular testing;
• Liaising with CERT-EU and relevant national and EU security authorities and services on matters related to the information security of the Agency;
• Performing any other tasks as required.
1.1 General
• Be a national of one of the Member State of the European Union, or a national of the European Economic Area (Iceland, Liechtenstein, Norway);3
• Be entitled to his/her full rights as a citizen;4
• Have fulfilled any obligations imposed by the applicable laws on military service;
• Have a thorough knowledge of one of the official languages of the European Union5
and a satisfactory knowledge6 of another language of the European Union;
• Be physically fit to perform the duties linked to the post.7
1.2 Specific
1.2.1 Qualifications
To be eligible, a candidate must have
a) A level of education which corresponds to completed university studies attested by a diploma when the normal period of university education is four years or more, or;
b) A level of education which corresponds to completed university studies attested by a diploma when the normal period of university education is at least three years.
Candidates must indicate in their applications the official duration of studies and the graduation dates for all the diplomas they have obtained.
How To Apply:
Deadline for applications 27 September 2021 at 12.00 noon Paris time
Main purpose:
The Security Expert will report to the Director of Operations Department, collaborate with and support all other units in ensuring the organisation’s personnel, assets and premises are adequately protected against information security threats. In particular, the Security Expert will ensure adequate controls and measures are in place so that all data, information systems and assets are protected against cyber risks, relevant to the digital ecosystem in which EBA operates.
The Security Expert will also contribute to the advancement of the EBA’s objectives in the EU and other international fora and will represent the EBA externally at a technical level in his/her area of expertise.
Main purpose:
The Security Expert will report to the Director of Operations Department, collaborate with and support all other units in ensuring the organisation’s personnel, assets and premises are adequately protected against information security threats. In particular, the Security Expert will ensure adequate controls and measures are in place so that all data, information systems and assets are protected against cyber risks, relevant to the digital ecosystem in which EBA operates.
The Security Expert will also contribute to the advancement of the EBA’s objectives in the EU and other international fora and will represent the EBA externally at a technical level in his/her area of expertise.
He/she will establish and maintain the information security program to ensure that information assets and associated technology, applications, systems, equipment, infrastructure and processes are adequately protected against threats. The Security Expert will define and own the security processes and controls embedded in the operational processes and controls; as well as define and execute the appropriate second line assurance activities to monitor, control, report and manage all information security related activities and events. He/she will lead the Information Security practice, driving awareness, providing training, collaborating with colleagues and units at all levels to support cybersafe advancement of Business Objectives.
Main responsibilities:
• Develop, implement and maintain the EBA’s Information Security Framework in accordance with EU institutional rules, Security Frameworks and information security best practices;
• Facilitate the EBA Information Security Governance structure that enables EBA Senior Stakeholders to be informed on key Enterprise Information Security Risks, approve and review the Information.
Security Book of Work;
• Perform Information Security risk assessments, inspections and reviews on technology assets,
solutions, systems and processes holding, storing or processing EBA data, including Vendors and Partners and their interfaces and contracts. Own and lead the Information Security Incident Response for the Agency, while maintaining a central incident register for the organisation;
• Manage and maintain a targeted information security awareness training program for all
employees, contractors and approved system users, and establish metrics to measure the
effectiveness of this security training program for the different audiences;
• Advise management and staff on information security related matters;
• Contribute and maintain the EBA Business Continuity Plan; refine and lead the implementation of effective disaster recovery procedures and process, including their regular testing;
• Liaising with CERT-EU and relevant national and EU security authorities and services on matters related to the information security of the Agency;
• Performing any other tasks as required.
Eligibility Criteria
To be considered eligible, candidates must satisfy all the criteria listed below, by the deadline for submitting applications.
To be considered eligible, candidates must satisfy all the criteria listed below, by the deadline for submitting applications.
1.1 General
• Be a national of one of the Member State of the European Union, or a national of the European Economic Area (Iceland, Liechtenstein, Norway);3
• Be entitled to his/her full rights as a citizen;4
• Have fulfilled any obligations imposed by the applicable laws on military service;
• Have a thorough knowledge of one of the official languages of the European Union5
and a satisfactory knowledge6 of another language of the European Union;
• Be physically fit to perform the duties linked to the post.7
1.2 Specific
1.2.1 Qualifications
To be eligible, a candidate must have
a) A level of education which corresponds to completed university studies attested by a diploma when the normal period of university education is four years or more, or;
b) A level of education which corresponds to completed university studies attested by a diploma when the normal period of university education is at least three years.
Candidates must indicate in their applications the official duration of studies and the graduation dates for all the diplomas they have obtained.
How To Apply:
Submit CV To: xxxxxxxxxxxx@xxxxxxx.com (Email Hidden)
(Email is available to Subscribers Only )