Your key responsibilities will include:

• design and implementation of comprehensive information security and cybersecurity awareness and training programs on various topics.
• Managing and driving programs focused on cybersecurity skills development and regulatory compliance.
• Contributing to the continuous enhancement of our risk model to align with recent directives and standards.
• Analysing security-related data to develop effective governance strategies.
• Overseeing the execution of information security projects.
• Providing expert guidance on best practices in Information Security and Cybersecurity.
• Conducting initial security assessments for SMEs and offering actionable recommendations based on your findings.

• Over 5 years of experience in information security, cybersecurity or related fields.
• Proven experience managing cybersecurity control programs with in-depth knowledge of cybersecurity frameworks such as the ISO 27000 series, GDPR, and other regulatory requirements.
• Strong understanding of evolving directives and legislation from the European Commission.
• Exceptional ability to simplify complex information security and cybersecurity concepts for diverse audiences.
• Capability to provide clear and constructive feedback on critical cybersecurity initiatives, including policies and application designs.
• Experience in creating content and training materials on security and privacy topics to foster awareness and best practices.
• A strong eagerness to continuously learn and stay updated on emerging cybersecurity trends.
• Excellent verbal and written communication skills for engaging both technical and non-technical audiences.
• Fluency in English and French (mandatory), both spoken and written.
• Proven ability to independently manage and lead multiple projects.

• ISO 27001 Lead Auditor or Lead Implementer, and ISO 27005 Risk Manager certifications.
• Relevant certifications such as CISSP, CISA, CISM, or equivalent.
• Proficiency in Luxembourgish and/or German is a plus.
• General knowledge of infrastructure and software security testing.
• Project management experience and certifications (PMP, Prince2, etc.).

If you are interested in this profile and you meet the above qualifications, please submit your resume and cover letter highlighting your relevant experience and certifications to hr@lhc.lu specifying the job reference ‘Senior-GRC-Specialist_NC3_2025’.