Skip to main content

Busca nuestros empleos

Head of IT security, Risk & Compliance - Technology and Digital

Detalles del puesto

location-pin Berlín, Berlín, Alemania; Lyon, Rhône, France; Prague, Hlavní město Praha, Czechia
location-tag 210003I0

The Adecco Group is the world’s leading HR solutions partner. We provide more than 700,000 people with permanent and flexible employment every day. With more than 34,000 employees in 60 countries, we transform the world of work one job at a time. Our colleagues serve more than 100,000 organisations with the talent, HR services and cutting-edge technology they need to succeed in an ever-changing global economy.  As a Fortune Global 500 company, we lead by example, creating shared value that meets social needs while driving business innovation. Our culture of inclusivity, fairness and teamwork empowers individuals and organisations, fuels economies, and builds better societies. These values resonate with our employees, who voted us number 7 on the Great Place to Work® - World’s Best Workplaces 2020 list.  We make the future work for everyone.

The Adecco Group is based in Zurich, Switzerland. Adecco Group AG is registered in Switzerland (ISIN: CH0012138605) and listed on the SIX Swiss Exchange (ADEN). The group is powered by eight lead brands: Adecco, Modis, Badenoch + Clark, Spring Professional, Lee Hecht Harrison, Pontoon, Adia and General Assembly.

Job Purpose

  • Support the Group Head of Technology and Group Head of Products with ensuring Confidentiality, Integrity and Availability of Information Assets within the scope of Digital Products and Ventures
  • Implement and continuously improve an effective and efficient Information Security Management System in line with Group IT Security Strategy, Policies and Standards within the Digital Products and Ventures Organization.
  • Ensure that operational, legal, regulatory and security risks for Digital Products and Ventures are assessed and mitigated with effective controls in accordance with the business requirements and Enterprise Architecture.
  • Responsible to publicize the Adecco IT Policy framework standards throughout all business and IT users of the Digital Products and Ventures organization to ensure all projects in scope are delivered in conformance to Group Standards.
  • Monitor and manage all security incidents, lead investigations on behalf of the IT Leaders and take remedial actions to prevent recurrence wherever possible.

Main Stakeholders

  • Group Head of Products
  • Group Head of Technology
  • Digital Product Managers
  • Digital Ventures IT and Business Directors
  • Security, Business and Solution Architects
  • Solution Delivery Managers
  • Global and Operating Units’ Privacy Officers
  • Internal & External Audit
  • Legal

Measured on

  • Achievement of Security, Risk and Compliance SLA Targets
  • Compliance with Security, Risk and Privacy Requirements
  • # and impact of security incidents affecting Digital Ventures
  • # of security vulnerabilities or non-conformities raised for Digital Products

Main tasks & responsibilities

  • Support the Global Head of Information Security, Risk and Compliance in the implementation of the Group Information Security Strategy in the Adecco Group Digital Products and Ventures
  • Supporting the Group Privacy Office by providing guidance and driving awareness in relation to the Data Privacy and Data Protection topics.
  • Communicate and publicize the Adecco Group IT Policy & Control framework and ensure risk assessments exercises are carried out timely and in line with the established procedures
  • Liaise with other Assurance functions (Internal and External Auditor), coordinate security audits and ensure that remediation plans are defined and implemented in line with agreed dates.
  • Assess current levels of risks within the Digital Products and Ventures-IT environment on an on-going basis. Ensure all the Identified security risks are managed through their life-cycle and provide visibility to Management with clear and concise reporting
  • Ensure that security is embedded in the projects lifecycle and that project teams deploy products /systems / applications in line with the IT Security Architecture Framework
  • Provide concise, relevant and informative reports to the Global Head of Information Security, Risk & Compliance and Main Stakeholders on the status of security and risks within the Digital Products and Ventures environment
  • Monitor & manage all security incidents & breaches and take remedial actions to prevent recurrence wherever possible
  • Lead investigations in coordination with the GSOC (Global Security Operations Centre) in the respective functional area, on behalf of business and IT Leadership Team, for breach of Information Security Policies and standards or security compromise.
  • Be the recognized expert in the field of Information Security within the Digital Products and Ventures organizations and keep abreast of local regulations and requirements related to information security like Data Privacy Laws
  • Ensures Group Information Security Awareness Initiatives and end users training are deployed

People, Resource management responsibilities & Decision Power

  • Line Manager of assigned resources
  • Define security and compliance guidelines
  • Define KPIs related to Risk management

Minimum requirements & Personal attributes

Education and certifications/training:

  • University degree preferably in a technical subject or any comparable education
  • CISSP, CISA, CISM or similar certification preferred
  • Professional experience in running the information security office analysing and applying information security, risk management, and privacy practices

Professional & Leadership experience:

  • 5 years of experience in a similar position within a Global Organization
  • Professional experience in running the information security office analysing and applying information security, risk management, and privacy practices
  • Demonstrable knowledge in key IT Security and Risk Management framework (such as COBIT, NIST, SOC 2, ISO 27001)
  • Demonstrated experience and exposure in the international security arena dealing with security-related issues
  • Big 4 or HR industry background is desirable.

Personal attributes:

  • Strong team player
  • Ability to build pro-active, co-operative working relationships with customers, peers and key stakeholders based on respect and team work
  • Good ability to convince and influence stakeholders from all backgrounds.
  • Experience with and sensitivity for different cultures
  • Ability to act under strong pressure and to manage efficiently crisis situations
  • Good in leadership, inspiring, encouraging and providing constructive criticism to help improve performance of colleagues
  • Able to evaluate information, identify key issues and formulate conclusions based on sound, practical judgment, experience and common sense
  • Willingness and ability to travel

Language requirements:

  • Good to excellent command of English
  • Any additional language is a plus

This job advert is posted by Adecco Group AG with registered address at Bellerivestrasse 30, 8008 Zürich, Switzerland.

Lo que significa ser parte de the Adecco Group.

Durante más de 50 años, hemos ayudado a conectar a miles de personas, en todo el mundo, de diferentes experiencias y culturas con oportunidades de empleo. Ofrecemos servicios y soluciones líderes de Recursos Humanos, impulsando el mundo del trabajo, que no solo ofrece a nuestros clientes una experiencia más personalizada, sino que también brinda a nuestros compañeros un sentido de propósito y valor en el trabajo que realizan con nosotros. Ser parte de nuestro grupo internacional significa ser parte de una comunidad que se impulsa mutuamente para ser mejor. Harás un trabajo que desafíe la vida de nuestros clientes. Serás parte de una red de personas enérgicas y profesionales que creen en lo que estamos haciendo. Y tu también creerás en ello.

  • hired

Únete a nuestra comunidad global de talentos

Cuando la oportunidad llama, ¡asegúrate de escucharla! Ingrese tus datos para unirte a nuestra comunidad de talentos y regístrete para recibir alertas automáticas de trabajo.

Nuestros Términos de uso, Política de cookies y Política de privacidad explican cómo recopilamos y usamos tu información y los derechos que tienes. Al enviar tu información, reconoces que has leído esos documentos y aceptas recibir alertas de empleo por correo electrónico de the Adecco Group.

¿Ya estás registrado? haga clic aquí