Description
Selection reference: OP/COM/2023/221
Function Group: Administrator
Grade: AD7
Job title: IT Security Officer
Job N°: 320227
Where: Unit OP.A.3 - „Digital Solutions and Process Efficiency“, Luxembourg
Publication deadline: 17.04.2023 - 12.00 (Brussels time)
We are
The Publications Office of the European Union (OP) is the official provider of publishing services to all EU institutions, bodies, and agencies. As such, it is the central point of access to EU law, as well as to publications, open data, research results, procurement notices and other official information. The Office thereby plays a central role in making it known to the public what the EU does and means for them, and in unlocking the power of data. Its mission is to support EU policies as a recognized competence center for information, data and knowledge management, and to ensure that this broad range of information is available to the public as accessible and reusable data to facilitate transparency, economic activity and the diffusion of knowledge.
The Publications Office publishes in all the official languages of the European Union and continuously adapts its services to a rapidly evolving technological environment (e.g. data services, cloud computing, machine learning and artificial intelligence).
The Unit A.3 Digital Solutions and Process Efficiency manages the portfolio of Information Systems of the Office. Our unit consists of highly qualified Digital Transformation Experts who provide technical expertise and manage the operation, development and evolution of our systems.
The unit applies service management methodologies to assist the operational units, helping them to define their IT needs and carrying out a constantly evolving work program while reporting to the management on the state of the projects. It elaborates and maintains OP's multi-annual IT plan and ensures efficiency and harmonisation of OP's information architecture.
We propose
An interesting post as Information Systems Security Officer to join our highly motivated Security and Architecture Competence Centre, which is part of the Digital Solutions and Process Efficiency unit to provide expertise and leadership in the fields of Information Security and Cybersecurity. These fields are priorities for the Publications Office.
Delivering the Digital transformation of OP requires the constant evolution of information systems through many projects implemented each year. The responsibilities of the Security and Architecture Competence Centre cover the development, review and update of the Information Systems (IS) security policy, development of the rolling IS security strategy and IT Multiannual Plan, support and follow-up for IS security governance bodies at appropriate level, interaction with DG DIGIT, driving the lessons learned and continuous improvement processes, and maintaining regular communication with system owners and other stakeholders.
The focus of the Information Systems Security Officer will be to advise the System Owners, System Managers and Project Managers on the IS security approach and to take an active role as IT security expert to perform risk assessments, update IT security plans and architectures, and perform design and verification activities of Information Systems security, such as code reviews.
She/he will also contribute to the review and update of the Office IS security policy, strategy and architecture, with particular attention to the aspects of their implementation in practice. The job involves cooperation with other experts within the unit but also with many stakeholders across OP and within the European Commission services in charge of security (DG DIGIT.S and DG HR-DS). She/he will make technical choices for changes and new developments in cooperation with DIGIT and contractors.
We look for
A person motivated by contributing to ensuring the EU’s institutions’ cyber-security, attentive to detail, with a mature sense of responsibility and the ability to follow-up on multiple tasks simultaneously.
IT security or IT audit experience, either on complex, large-scale systems and/or project experience with secure software development principles is required. Holding recognized vendor-neutral certifications in the field of security management or security assurance is a plus.
A technical background in software quality assurance, knowledge of project management methodology, DevSecOps, security by design, enterprise architecture and IT architecture would also be assets. Exposure to Cloud native systems (AWS or Microsoft Azure) is a plus.
The candidate must be able to work both autonomously and as part of a great team. Communication and negotiation skills, and the ability to communicate complex concepts, develop actionable conclusions and formulate clear recommendations are needed for this position.
The position requires strong organisational skills, readiness to adapt quickly to changes in the working environment, drafting and presentation skills. Oral and written command of English is essential. Knowledge of French brings added value, but is not a prerequisite, beyond willingness to learn it.
How to apply?
Interested candidates should send their CV and motivation letter in a single PDF document by the publication deadline to the following email address:
OP-DIR-A-SECRETARIAT
publications [dot] europa [dot] eu (OP-DIR-A-SECRETARIAT[at]publications[dot]europa[dot]eu)
indicating the selection reference OP/COM/2023/221 in the subject.
No applications will be accepted after the publication deadline.