Senior Information Security Officer – IAM (m/f)
Arendt & Medernach is the leading independent business law firm in Luxembourg with over 800 professionals. The firm’s international team of more than 450 legal experts represents Luxembourg and foreign clients in all areas of Luxembourg business law from its main office in Luxembourg and representative offices in Frankfurt, Hong Kong, London, New York, and Paris.
Our service to clients is differentiated by the end-to-end specialist advice we offer, covering all legal, regulatory, taxation, and advisory aspects of doing business in Luxembourg.
Our firm advises international and domestic clients in all areas of business law relevant to their business activities, ranging from fund formation, banking, insurance, private equity, and real estate to corporate and tax matters.
Given the ongoing development of our firm, we are currently recruiting:
Senior Information Security Officer – IAM (m/f)
Based in Hamm
Your role:
Information Security Officer Responsibilities
- Develop and enforce security policies, standards, and procedures to ensure compliance with legal and regulatory requirements.
- Lead risk assessments, security audits, and vulnerability assessments to identify potential threats and implement necessary safeguards.
- Monitor and analyze security alerts and respond to security incidents swiftly and effectively.
- Collaborate with IT teams to integrate security measures into their processes.
- Analyze, validate, and respond to security requests from end users, ensuring timely resolution and maintaining a high level of security awareness across the organization.
- Educate and train employees on security best practices and protocols.
IAM Specialist Responsibilities
- Perform an audit of the current situation and solutions in terms of IAM.
- Develop and maintain a robust IAM framework that aligns with the organization’s security policies and business needs according to security best practices and standards (ISO27001; CIS20;…).
- Manage the lifecycle of user identities, roles, and permissions, ensuring proper access is granted based on job function (RBAC, etc…).
- Gather the business requirements and analyze business processes through various approaches: workshops, one-to-one interviews with the different functions and teams, documentation analysis, etc…
- Implement and maintain single sign-on (SSO), multi-factor authentication (MFA), and privileged access management (PAM) systems.
- Conduct periodic access reviews, audits, and recertification to ensure users have appropriate access rights.
- Investigate IAM-related incidents and ensure corrective actions are implemented to prevent future occurrences.
Your profile:
- You have a Master Degree in IT ideally with a strong focus in Security;
- You have at least 5 years’ experience as an IAM Specialist;
- You have experience in defining and implementing IAM strategies and solutions;
- You have a good knowledge of IAM protocols (OpenID, Oauth, SAML, Roll based Access, Claim Based Access);
- You have in-depth understanding of security frameworks such as NIST, ISO 27001, and CIS Controls.
- You have experience with security information and event management (SIEM) tools.
- You have experience of Zero Trust model;
- You have strong analytical, troubleshooting and problem-solving skills;
- You have demonstrated expertise in working with clients with a focus on customer service with the ability to adapt to diverse interlocutors;
- You have strong verbal and written communication skills both in French and English;
- You are highly motivated, organized individual with strong analytical skills, who is able to work methodically with minimal supervision;
- You are an effective team player who demonstrates initiative and strives for continual improvement.
We Offer:
- Excellent career development opportunities with tailor-made internal training focused on both technical and soft skills;
- An entrepreneurial work culture where we promote talent & ideas;
- Multicultural, diverse teams encouraging collaborative work;
- The opportunity to work and interact within a wide network of specialists; and
- A hybrid working environment offering flexibility and the possibility to work from home.
Within Arendt, we uphold high standards. Our professionals work with clients on engaging projects, empowered from the start. With a strong local presence in Luxembourg and international reach, we support and train our team members to thrive in a culture of excellence. Specialised teams ensure the right skills are available, allowing for a focus on added value. Our leaders are approachable, providing support and mentoring.
We offer a vibrant social life with numerous events, embracing sports and art, our culture encourages openness and discovery beyond the professional realm. With over 50 nationalities represented, Arendt is committed to the well-being of its staff, serving the best interests of its clients, protecting the environment, and supporting education.
Arendt promotes equal opportunities and value each employee for what they bring to the community.For more information, please refer to our diversity and inclusion policy on our website.
Interested?
If you are interested in this job opportunity, we are looking forward to receiving your application.
All applications will be treated confidentially.
Please be aware that the selected candidate will be required to provide a criminal record (or certificate of good conduct).
#AM
About Arendt
Arendt & Medernach (A&M) is dedicated to providing top-quality legal services. Based in Kirchberg, A&M is the leading independent law firm in Luxembourg, representing local and international clients in all areas of Luxembourg business law.
Arendt Regulatory & Consulting (ARC) is a team of experts from a diverse range of fields. Based in Kirchberg, ARC offers the opportunity to advise asset managers and servicers on their fund regulatory matters.
Arendt Investor Services (AIS) acts as a regulated business facilitator. Supported by a team of experts in Hamm, AIS offers a full range of corporate, tax and funds services.