Skip to main content

IT Third Party Security Manager

Division: Chief Information Security Office (CISO)

As a global financial market infrastructure, the protection of Euroclear information and assets is fundamental to the company’s business. Security is at the core of our services, firmly embedded in the management systems and processes of the company.

Euroclear's mission is to reduce risk, provide liquidity and offer trusted post-trade securities services to its customers within financial services. Euroclear operates as an (I)CSD offering core post-trade securities services to its customers - securities settlement, collateral management, corporate actions, funds, and securities issuance.

As a group, Euroclear consists of six domestic securities CSDs and one international ICSD. These entities are served by Euroclear SA which acts as the parent, sets strategy and policies, provides shared IT services, and ensures that effective controls are in place to manage risk.

Euroclear plays a significant role as a major European Financial Market Infrastructure (54% of EU Equities and 63% of EU Bonds) and has been designated by Oversight as a ‘Systemically Important Financial Institution’ (SIFI).

IT and Cyber Risk Team

Aligning with the overall corporate mission of being a 'trusted Financial Market Infrastructure', the 'IT and Cyber Risk' team within CISO Division provides several services that aim to:

  • Ensure ‘end-to-end’ management of risks by identifying IT, information security or cyber risks or deficiencies.
  • Ensure root cause issues and risks are structurally remediated through sustainable controls and ensure reduce risk exposure through increased control maturity.
  • Ensure risk exposure is in line with the risk appetite of the firm.
  • Ensure regulatory compliance is evidenced.
  • Ensure accountability, ownership and risk culture is embed within first line.
  • Role Description – IT Security Manager

    Ecosystem Third Party Security Monitoring & Alerting 

  • Continuous, automated monitoring of Third Party related Cyber Threats with the potential to impact Euroclear. Monitoring is executed with the help Cyber Threat intelligence tools. The capability enables Euroclear to quickly act, limiting the risk of contagion or severity of impacts.​
  • Continuous monitoring, alerting and incident management of external connections based on several distinct use-cases.
  • Core Skills

  • Knowledge of the customer, third-party and connectivity ecosystems
  • Knowledge of security risk management
  • Knowledge of control frameworks, ., ISO 27000, NIST, CIS-18, COBIT-5
  • Knowledge of logging, monitoring, and alerting is an advantage.
  • Knowledge of similar ecosystem frameworks, ., SWIFT CSP is an advantage.
  • Knowledge of financial markets, FMIs and CSD operations is an advantage.
  • Experience with supplier and supply chain due diligence framework, procedures, data gathering risk and control assessment.
  • Experience with contract review of information security schedules and terms
  • Knowledge of logging, monitoring, and alerting is an advantage.
  • IT Security Certification such as CISSP, CSSLP, CCSP, CISM, CISMP, GCIH, CEH, etc. is an advantage.
  • Soft Skills

  • Leadership. Be an inspiring and engaging leader by providing strategy and direction to team members, by showing business acumen, by possessing self-reflection and by being results-driven.
  • Interpersonal. Be self-motivated and proactive, have strong, innovative and creative problem-solving skills, be open and welcoming to change, work comfortably in a constantly evolving environment and have an ability to remain calm under pressure and in the face of uncertainty.
  • Collaborative. Work comfortably with business executives and stakeholders, within group settings or with team-members
  • Change. Ability to handle multiple projects against tight deadlines whilst being instrumental in delivering cultural change throughout the organization.
  • #LI-NS1

    Others also viewed

    IT Third Party Security Manager

    Company:
    Euroclear
    City:
    Belgique
    Contract type: 
    Permanent, Full-time
    Categories: 
    IT, Security Manager, Security Engineer
    Career level: 
    Manager
    Published:
    02.05.2024
    Share now: