ISMS Manager

Be part of something bigger!

As the world and the way people live is changing, at Bekaert we believe it’s our responsibility to contribute to finding new solutions for the future. Our ambition is to be the leading partner for shaping the way we live and move. And to always do this the Bekaert Way – safe, smart, and sustainable.

With a heritage of more than 140 years, we continue to strengthen our core competencies that have made Bekaert a global market and technology leader in material science of steel wire transformation and coating technologies. Today, we also apply our expertise beyond steel to create new solutions with innovative materials and services for markets including new mobility, low-carbon construction, and green energy.

As a dynamic and growing company with over 27,000 employees worldwide, 75 nationalities, a retention rate above 90% and almost € 7 billion in combined revenue in 2022, we're looking for someone like you to join our team!

Why join us?

• Personal Growth – Let us help you unlock your full potential

• Pioneering – Join us to challenge the impossible

• Creativity - Discover possibilities beyond steel

• Purpose – Drive progress for our planet and people

• Diversity – Together, we create change

PURPOSE OF THE JOB  

Data Privacy and the Cyber security has become a paramount concern for the organization undergoing digital transformations. With organized cyber-crime, state-sponsored crime, Cyberattacks are becoming More Sophisticated, More Targeted and More Serious.  The current threat landscape means Bekaert need to be prepared for both the complex cyberattacks of today and the next generation of threats. Bekaert has decided to establish an Information Security Management System (ISMS), a set of policies and procedures for systematically managing an organization's sensitive data. Create Security aware culture and manage risk before cyber criminals exploit them.

Bekaert is looking for an ISMS Manager to drive its Information security governance, risk and compliance program.

Key Responsibility 

ISMS Manager will be primarily responsible for-

• • Developing the information security policies, framework, process and standards that meet legal, regulatory, and industry standards.

  • Govern the currently developed information security polices and critical process and ensure there are periodically reviewed so they remain relevant to current security threat landscape.

  • Ensure the security polices, framework, process and guidelines are communicated to relevant stakeholder and required education campaign is developed to create the awareness on security polices, framework, process and guidelines.

  • Develop the information security risk assessment program and conduct risk assessments with help of external security partner to identify potential threats to the organization's information assets and developing appropriate risk mitigation strategies.

  • Annually assess maturity of information security program maturity as per NIST Cyber security framework

  • Perform Security Gap assessment to check compliance with Bekaert's Security polices and framework. Explaining and articulating potential business risks to key stakeholders  

  • Own Information Security Risk register and apprise CISO office, IT leadership team and relevant stakeholder on identify cyber security risk.

  • Develop and Maintain Key Performance Indicators (KPI’s) and Key Risk Indicator (KRI’s) for Cyber Security program and monitor their achievement on periodic basis. 

  • Assessing the effectiveness of the organization's Cyber security technology controls framework to ensure that they are adequate and functioning as intended.

  • Establish Information security Exception management program and periodically review and approve the Information security exception request.

  • Develop, manage and implement a positive security awareness program, which focuses on establishing security aware culture in organization and home

  • Lead the creation and procurement of awareness deliverables and learning content, leveraging various channels for effective delivery in our global organization, measures the usage of the content and its effectiveness, and develops metrics

  • Will be responsible for the day-to-day operation of the phishing assessment program

Skills & Competencies

• • Strong knowledge of information security policies and principles of information handling and protection

  • Demonstrates in-depth knowledge of security and privacy controls and risk management process

  • Strong knowledge and experience in information security risk Assessment/management program

  • Experience in conducting risk assessments and developing risk mitigation strategies.

  • Experience deploying and measuring effectiveness of security awareness to a global audience, leveraging LMS, webcasts, and other technology

  • Experience in leveraging industry standards and frameworks such as ISO/IEC 17799, ISO/IEC 27001, COBIT, ITIL, etc.

Education:

• • An advanced degree in Computer Science, Information Security, or a related discipline, or equivalent work experience

Certification Requirements:

• • 10 years of work experience in Information Governance  IT Audit, IT Security, or IT Risk Management

  • Possesses certifications such as ISO27001 LA/ LI, ISO22301 LA/LI, CISSP, CISA, CISM, Global Information Assurance Certification (GIAC)  certification- preferred

Will you dare to take the next step?

Join us to unlock your full potential AND have a true impact in pushing the boundaries of what is possible.

We're looking for individuals who are not afraid to take risks and explore new ideas. If you are passionate about personal growth and bringing your authentic self to work, we want you on our team!

At Bekaert, we celebrate diversity and are committed to creating an inclusive work environment. We do not discriminate based on race, religion, color, national origin, sex, gender, gender expression, sexual orientation, age, marital status, veteran status, or disability status.