Information Security Specialist Fr-Eng (M/F)
Veröffentlicht am 01/07/2026
SOFITEX TALENT RECRUITMENT
- Luxembourg-Ville
- IT Entwicklung
- Zwischen 70k und 90k € / Jahr
Arbeitszeit
Vertragsart
Sprachen
Berufserfahrung
Bildungsniveau
Sofitex Talent Recruitment Fort d'une expérience de plus de 30 ans dans les Ressources Humaines, Sofitex est un réseau international de Travail Temporaire et de Placement en CDI. Sofitex fonde sa dynamique et son succès sur le professionnalisme de ses équipes, sa forte réactivité et sa proximité.
POSTE
For one of our client located in Luxembourg Kayl, Sofitex Talent is currently looking for an
Information Security Specialist Fr-Eng (M/F)
The Information Security Specialist works in close partnership with the CISO to maintain and enhance the Company's information security framework. The role requires a high level of autonomy, ownership and expertise, with the ability to independently manage security initiatives, challenge stakeholders and provide pragmatic recommendations. This is a hands-on expert role with no direct people management responsibilities.
Your responsibilities
· Apply and enforce the information security policy across the entire IT environment.
· Conduct periodic security controls: access reviews, configuration checks, patch compliance verification, etc.
· Independently lead security initiatives and projects from assessment to implementation.
· Plan and coordinate penetration tests and vulnerability scans, track non-conformities and implement remediation plans.
· Interact with the Security Operations Center (SOC).
· Monitor and manage security-related ticketing.
· Define and track security KPIs to measure the performance and maturity of the information system.
· Identify security gaps in relation to internal and external standards and propose continuous improvement plans, in coordination with business and technical teams.
· Recommend and implement security solutions adapted to project needs (authentication mechanisms, API security, encryption, network segmentation, etc.).
· Support the security of new IT and business projects (risk analysis, secure architecture, compliance checks). Act as a trusted advisor to the CISO and internal stakeholders on cybersecurity matters.
· Coordinate and follow up on internal, external, and regulatory audits (ISO 2700X, GDPR, DORA, CSSF circulars, etc.).
· Challenge existing practices and proactively identify security risks and opportunities for improvement.
· Manage the full lifecycle of digital certificates: creation, renewal, expiration tracking.
· Ensure secure exchanges with clients and partners.
· Contribute to security incident management: analysis, response, communication, and post-incident review.
· Maintain an active watch on threats, vulnerabilities, and security technologies.
· Prepare reports and dashboards for the CISO and relevant stakeholders.
PROFIL
· Master's degree (or equivalent Bac+4/5) in Cybersecurity, Computer Science, or Information Systems.
· At least 5 years of experience in a similar role.
· Fluency in English and French
· Solid knowledge of security frameworks (ISO 2700X, NIST, CIS Controls) and regulatory requirements (GDPR, DORA, CSSF circulars).
· Proficiency with security technologies and tools: SIEM, EDR, MFA, IAM/PAM, DLP, SonarQube, Nexus.
· Demonstrated ability to work autonomously in a small security team, take ownership of complex security topics and deliver results with limited supervision. Ability to act as a sparring partner to the CISO and influence stakeholders at all levels of the organization.
· Strong sense of accountability, pragmatism and solution-oriented mindset.
· Strong analytical skills, rigor, autonomy, and the ability to interact with both technical and non-technical profiles.
· Proven experience managing information security topics in regulated environments (financial sector experience is considered a strong asset).
This is a great opportunity to start as a Consultant for 3 months, with then possibility of a permanent contract with our client.
Salary: 75-80K annual
Starting date: Asap
POSTE
For one of our client located in Luxembourg Kayl, Sofitex Talent is currently looking for an
Information Security Specialist Fr-Eng (M/F)
The Information Security Specialist works in close partnership with the CISO to maintain and enhance the Company's information security framework. The role requires a high level of autonomy, ownership and expertise, with the ability to independently manage security initiatives, challenge stakeholders and provide pragmatic recommendations. This is a hands-on expert role with no direct people management responsibilities.
Your responsibilities
· Apply and enforce the information security policy across the entire IT environment.
· Conduct periodic security controls: access reviews, configuration checks, patch compliance verification, etc.
· Independently lead security initiatives and projects from assessment to implementation.
· Plan and coordinate penetration tests and vulnerability scans, track non-conformities and implement remediation plans.
· Interact with the Security Operations Center (SOC).
· Monitor and manage security-related ticketing.
· Define and track security KPIs to measure the performance and maturity of the information system.
· Identify security gaps in relation to internal and external standards and propose continuous improvement plans, in coordination with business and technical teams.
· Recommend and implement security solutions adapted to project needs (authentication mechanisms, API security, encryption, network segmentation, etc.).
· Support the security of new IT and business projects (risk analysis, secure architecture, compliance checks). Act as a trusted advisor to the CISO and internal stakeholders on cybersecurity matters.
· Coordinate and follow up on internal, external, and regulatory audits (ISO 2700X, GDPR, DORA, CSSF circulars, etc.).
· Challenge existing practices and proactively identify security risks and opportunities for improvement.
· Manage the full lifecycle of digital certificates: creation, renewal, expiration tracking.
· Ensure secure exchanges with clients and partners.
· Contribute to security incident management: analysis, response, communication, and post-incident review.
· Maintain an active watch on threats, vulnerabilities, and security technologies.
· Prepare reports and dashboards for the CISO and relevant stakeholders.
PROFIL
· Master's degree (or equivalent Bac+4/5) in Cybersecurity, Computer Science, or Information Systems.
· At least 5 years of experience in a similar role.
· Fluency in English and French
· Solid knowledge of security frameworks (ISO 2700X, NIST, CIS Controls) and regulatory requirements (GDPR, DORA, CSSF circulars).
· Proficiency with security technologies and tools: SIEM, EDR, MFA, IAM/PAM, DLP, SonarQube, Nexus.
· Demonstrated ability to work autonomously in a small security team, take ownership of complex security topics and deliver results with limited supervision. Ability to act as a sparring partner to the CISO and influence stakeholders at all levels of the organization.
· Strong sense of accountability, pragmatism and solution-oriented mindset.
· Strong analytical skills, rigor, autonomy, and the ability to interact with both technical and non-technical profiles.
· Proven experience managing information security topics in regulated environments (financial sector experience is considered a strong asset).
This is a great opportunity to start as a Consultant for 3 months, with then possibility of a permanent contract with our client.
Salary: 75-80K annual
Starting date: Asap