Grand Duchy of Luxembourg
Senior GRC Specialist

Overview

Senior GRC Specialist

Luxembourg House of Cybersecurity g.i.e. established in 2010 under the patronage of the Ministry of Economy, in partnership with SIGI and SYVICOL is strengthening its high performing team.

We are currently seeking a Senior GRC Specialist (m/f/d), on a full-time, permanent contract basis to join our team.

Target audience:
Individuals with work permit
Level:
senior
Language:
English/French
Duration:
CDI

Mission and role

Your key responsibilities will include:

  • design and implementation of comprehensive information security and cybersecurity awareness and training programs on various topics.
  • Managing and driving programs focused on cybersecurity skills development and regulatory compliance.
  • Contributing to the continuous enhancement of our risk model to align with recent directives and standards.
  • Analysing security-related data to develop effective governance strategies.
  • Overseeing the execution of information security projects.
  • Providing expert guidance on best practices in Information Security and Cybersecurity.
  • Conducting initial security assessments for SMEs and offering actionable recommendations based on your findings.

Profile and Requirements

  • Over 5 years of experience in information security, cybersecurity or related fields.
  • Proven experience managing cybersecurity control programs with in-depth knowledge of cybersecurity frameworks such as the ISO 27000 series, GDPR, and other regulatory requirements.
  • Strong understanding of evolving directives and legislation from the European Commission.
  • Exceptional ability to simplify complex information security and cybersecurity concepts for diverse audiences.
  • Capability to provide clear and constructive feedback on critical cybersecurity initiatives, including policies and application designs.
  • Experience in creating content and training materials on security and privacy topics to foster awareness and best practices.
  • A strong eagerness to continuously learn and stay updated on emerging cybersecurity trends.
  • Excellent verbal and written communication skills for engaging both technical and non-technical audiences.
  • Fluency in English and French (mandatory), both spoken and written.
  • Proven ability to independently manage and lead multiple projects.

Preferred Qualifications

  • ISO 27001 Lead Auditor or Lead Implementer, and ISO 27005 Risk Manager certifications.
  • Relevant certifications such as CISSP, CISA, CISM, or equivalent.
  • Proficiency in Luxembourgish and/or German is a plus.
  • General knowledge of infrastructure and software security testing.
  • Project management experience and certifications (PMP, Prince2, etc.).

If you are interested in this profile and you meet the above qualifications, please submit your resume and cover letter highlighting your relevant experience and certifications to hr@lhc.lu specifying the job reference ‘Senior-GRC-Specialist_NC3_2025’.