Information Security Governance Officer

Brussel  ‐ Onsite
This project has been archived and is not accepting more applications.
Browse open projects on our job board.

Keywords

Description

One of our most prestigious clients is looking for an Information Security Governance Officer who will:
- Create and implement a document framework for structuring' information security documents
- Prepare ISO certification for Information Security processes
- Define and update Information Security Governance documents
- Prepare and animate Information Security boards/committees consisting of senior management.

The above activities will ensure that:
- The existing process of Information Security governance is well maintained and documented
- The information governance is improved through the creation of a documentation framework for structuring' information security documents such that:
- Internal and cross-document coherence (usage of terminology; assignment of)

Roles & responsibilities:
- It is functionally complete;
- ISO 27001 certification requirements are met;
- The documentation status (up-to-date or not) is managed from a CMMI point of view;
- The different information security committees are well prepared, allowing for effective decision-making.

As Information Security Governance Officer, the candidate will:
(1) Create a documentation framework that allows a clear positioning of each information security structuring' document. The framework will align with the Group framework.

The delivery of the framework will include:
- Creation of a central reference library for all published information security
- Documentation (policies; standards; procedures; templates)
- Status reporting capability to enable oversight and drive iterative improvements
- Communication of the framework to concerned parties (authors; owners; users).

(2) Write/Review/Update governance documentation including:
- Information Security Management System
- Information Security Governance
- Information Security Roles & Activities Matrix
- Information Security Service Catalogue
- Terms of Reference for governing bodies
- List of committee/board members.

(3) Exercise light program management with document owners to ensure that ISO 27001 certification requirements are met. This activity leverages an existing certification gap analysis

(4) Organize Information Security committees and/or workshops by essentially covering the following tasks:
- Prepare agendas with meeting chair
- Coordinate with content owners to deliver presentation material in time and with good quality
- Quality review the presentation material
- Create the meeting minutes
- Follow-up on action items from the committees with action owners.

Start Date: ASAP. Duration: 6 months; extension possible.
Language: English. French and/or Dutch is nice-to-have but not mandatory.
Expertise: 3 to 5 years' experience in this area.
Certification: CISM (ISACA) is mandatory. CISSP (ISC²) is a plus. Very good knowledge of the ISO 27001 and the ISO certification process is required.

Start date
ASAP
Duration
6 months+
(extension possible)
From
Base 3 Systems S.A.
Published at
06.11.2013
Project ID:
623018
Contract type
Freelance
To apply to this project you must log in.
Register