Gentis
Gentis
Accueil

JobsMissionsMédiaÉtudes de cas
Contactez-nous à tout moment via
hello@gentis.com

Nos dernières offres

Rechercher une opportunité par mot-clé

Security Solution Analyst - GRC Cybersecurity

30/10/2024
PermanentSaudi ArabiaOn site17000 SR21000 SR
Lien copié
Description du poste

A leading organization in Saudi Arabia is seeking a Cybersecurity Compliance Officer to join their GRC team. The role focuses on developing and maintaining security governance frameworks, policies, and procedures to ensure alignment with regulatory requirements. The candidate will drive compliance with national cybersecurity regulations, data protection laws, and international security standards.


Key responsibilities include monitoring regulatory compliance, conducting internal security assessments, managing GRC technology platforms, and coordinating external audit engagements. The position requires regular reporting to GRC leadership and supporting organizational certification initiatives.


The ideal candidate will have experience in implementing and maintaining comprehensive security compliance programs while ensuring adherence to industry and regulatory requirements.


Detailed Responsibilities:

  • Develop and maintain comprehensive cybersecurity governance frameworks, policies, and procedures ensuring alignment with regulatory requirements, including NCA controls.
  • Drive compliance with key security standards and regulations including PDPL, ISO 27001, and other applicable frameworks. Monitor and implement emerging requirements.
  • Perform technical security reviews of system configurations, network architecture, and control implementations to validate compliance and security best practices.
  • Lead internal security assessments and compliance reviews to identify and remediate control gaps.
  • Implement and administer GRC automation platforms to enhance compliance monitoring efficiency and reporting capabilities.
  • Design and oversee control attestation procedures, working with control owners to validate and document control effectiveness.
  • Develop and execute third-party security assessment program to evaluate and monitor vendor security practices.
  • Generate regular security status reports for GRC management. Effectively communicate security risks, issues and recommendations to key stakeholders.
  • Manage external audit engagements and certification processes to ensure successful outcomes and continued compliance.
Description du profil

Key Competencies:

  • Information Security Governance: Advanced knowledge of security frameworks, policies, and strategic integration of security with business operations. Strong understanding of cyber resilience principles.
  • Regulatory & Standards Expertise: Comprehensive understanding of data protection laws, international security standards (ISO), and industry regulations. Ability to interpret and apply evolving requirements.
  • Technical Security Knowledge: Proficiency in assessing system security configurations, network architecture, and control implementations. Deep understanding of security best practices.
  • Security Assessment: Expert capability in conducting security assessments and compliance reviews. Strong analytical skills in control effectiveness evaluation.
  • GRC Technology: Advanced knowledge of GRC platforms and automation solutions. Expertise in optimizing compliance monitoring and reporting processes.
  • Control Framework: Deep understanding of control validation procedures and attestation processes. Knowledge of control documentation best practices.
  • Third-Party Security: Expert knowledge of vendor security assessment methodologies and supply chain risk management principles.
  • Strategic Communication: Strong ability to articulate complex security concepts to various stakeholders. Excellence in security status reporting and presentation.
  • Audit Management: In-depth knowledge of external audit and certification processes. Strong understanding of audit evidence requirements and remediation approaches.
  • Policy Architecture: Expert understanding of control frameworks and their relationship to organizational policies. Proficiency in mapping security requirements to operational controls.


Core Responsibilities:

  • Information Security Governance: Develop and oversee security frameworks, policies, and procedures aligned with business objectives. Integrate security strategy with operations to maintain business continuity and cyber resilience.
  • Regulatory & Standards Management: Ensure adherence to data protection laws, international security standards (ISO), and industry regulations. Monitor evolving requirements and update security practices accordingly.
  • Technical Security Oversight: Assess and validate system security configurations, network architecture, and control implementations against security requirements and industry best practices.
  • Security Assurance: Lead internal security assessments and compliance reviews. Evaluate control effectiveness and drive continuous improvement initiatives.
  • Technology & Process Optimization: Implement and manage GRC platforms and automation solutions to enhance compliance monitoring and reporting efficiency.
  • Control Management: Design and maintain control validation procedures, ensuring proper documentation and attestation from control owners.
  • Third-Party Risk Management: Develop and execute vendor security assessment programs. Evaluate and monitor external partner security postures to manage supply chain risks.
  • Stakeholder Management: Deliver regular status updates to GRC leadership on security posture and program effectiveness. Drive clear communication channels with key stakeholders.
  • Audit Coordination: Support external audit engagements and certification processes. Partner with auditors and internal teams to facilitate successful outcomes.
  • Policy Framework Administration: Maintain unified control framework mapping security requirements to organizational policies. Establish clear relationships between policies, standards, and operational controls.


Education & Professional Certifications:


· Advanced degree in Computing/Technology field (Bachelor's/Master's in Computer Science or related)

· Governance, Risk & Compliance certification (ISC2 GRC)

· CISSP (Certified Information Security Professional)

· CISA (Certified Information Systems Auditor)

· Security Controls Framework certification (SANS SEC566)

· OSCP (Offensive Security Certified Professional)

Lien copié

Opportunités similaires

ICT
16/09/2025

Senior Business Analyst

Location: Brussels – Arts-LoiType: Permanent Position (CDI)Lead requirements gathering and analysis in collaboration with multidisciplinary stakeholders, including actuaries, legal specialists, accounting, and finance teams.Translate business requirements into clear, comprehensive, and actionable functional specifications for technical and non-technical stakeholders.Challenge and improve existing business processes by evaluating current workflows and proposing enhanced, value-driven solutions aligned with organizational objectives.Document processes such as business flows, data movements, stakeholder interactions, and essential business rules, ensuring clarity and traceability.Represent business interests in discussions with IT departments and external partners, facilitating effective cross-functional communication.Support solution design by validating functionalities, developing prototypes, and integrating user feedback for continuous improvement.Coordinate and supervise user acceptance testing and execution of implementation activities, ensuring successful project transitions.Monitor progress of project deliverables and ensure alignment with business priorities throughout the project lifecycle.Experience in insurance or financial products, knowledge of BA-BOK certification, Jira, and Confluence are valuable assets for this position. Proficiency in English with additional working knowledge of French or Dutch is highly desired, and trilingual abilities are considered a strong advantage.

PermanentBelgiumHybrid
ICT
15/09/2025

Oracle Database Administrator

Position Overview: The Senior Oracle & SQL Database Administrator is responsible for the ongoing administration, optimization, and security of enterprise database systems in both on-premise and cloud-based environments. This role manages mission-critical databases and ensures high availability, scalability, and robust performance across a variety of projects.Lead the administration of Oracle and SQL Server databases, including installation, configuration, upgrading, and patching in complex environments.Oversee cloud database environments as part of wider infrastructure and cloud services, ensuring integration with existing on-premise solutions.Administer and manage LDAP directories to support database authentication and authorization protocols.Monitor database performance, proactively identifying and addressing potential bottlenecks or issues to uphold optimal system efficiency.Contribute to performance testing and tuning initiatives, collaborating with development and IT teams to optimize database response times.Support additional technologies such as PostgreSQL when required, assisting with integration, migration, or troubleshooting as part of the IT ecosystem.Prepare and maintain documentation for database infrastructure, procedures, and configurations to ensure continuity and compliance.Interact with multinational teams and prepare reports in fluent English; proficiency in French is highly valued and considered a strong advantage.Reporting to ICT Infrastructure & Cloud Services management, the role demands a high level of technical expertise and the ability to work with both internal and external stakeholders in English-speaking environments. Knowledge of French is a major asset for cross-functional communications.

PermanentLuxembourgOn site
ICT
15/09/2025

Développeur Java - Hibernate

Mission : Contribuer au développement et à l’amélioration d’applications backend au sein d’une équipe technique dynamique basée à Paris, dans le cadre d’un projet de 6 mois.Responsabilités principales :Développer et maintenir des composants backend performants en Java pour répondre aux besoins fonctionnels du projet.Assurer le support et l’optimisation des applications existantes, en utilisant notamment le framework Hibernate.Collaborer avec les équipes frontend, en intégrant différentes fonctionnalités à travers des API et des services compatibles avec JavaScript.Participer à la rédaction de la documentation technique afin de garantir la maintenabilité des solutions implémentées.Effectuer des revues de code et apporter des corrections dans une logique d’amélioration continue.Ce poste implique l’intégration d’un environnement technologique moderne et requiert une expertise confirmée en Java, ainsi qu’une compréhension fonctionnelle de JavaScript et Hibernate. La maîtrise professionnelle du français est essentielle pour la réussite de la mission.

Fixed termFranceHybrid
ICT
15/09/2025

Data Analytics & data scientist – Energy Forecasting

OverviewThis position focuses on supporting business functions within the Utilities and Energy sector by leveraging analytics, forecasting, and engineering capabilities. The role drives actionable insight through business intelligence and data engineering, using state-of-the-art analytical tools and programming techniques to resolve complex challenges.Key ResponsibilitiesBusiness IntelligenceDevelop, optimize, and maintain dashboards and data models to deliver meaningful insights supporting business decision-making within the Utilities and Energy domains.Utilize Dataiku, leveraging both visual and code recipes as well as Python notebooks, to perform advanced data analysis and predictive modeling.Produce regular and ad-hoc analytical reports related to forecasting, performance metrics, and trend analysis.Collaborate with stakeholders to understand business problems and translate them into analytical solutions.Data EngineeringExtract, transform, and load data from various sources using SQL and Python to ensure data accuracy, availability, and quality.Design and maintain robust, scalable data pipelines supporting advanced analytics and forecasting requirements.Work within an Agile organisation, participating in sprints, backlog refinement, and daily stand-ups to ensure timely and effective delivery of data products.Tooling & DevOpsApply knowledge of Azure DevOps to streamline and automate workflows, version control, and deployment of analytics solutions.Utilize Power BI where necessary to visualize and present data to technical and non-technical stakeholders.Project Involvement & CommunicationEngage with interdisciplinary teams across ICT and business units to support the resolution of complex issues through data-driven methods.Document methodologies, workflows, and outcomes to ensure transparency and knowledge transfer.Present findings and recommendations in clear, actionable formats to audiences across different departments.Required SkillsHands-on experience with Python scripting for analytical tasks and automation.Advanced skill in SQL Server for data querying, manipulation, and integration.Proficiency in using Dataiku, specifically visual recipes, code recipes, and notebooks.Knowledge of business processes and forecasting practices within the Utilities and Energy landscape.Familiarity with Azure DevOps for workflow and deployment management.Experience with Agile methodologies.Ability to use Power BI for data visualization.LanguagesFluent EnglishWorking knowledge of French or Working knowledge of Dutch

Fixed termBelgiumOn site
ICT
15/09/2025

Junior Application Support Analyst

Junior Application Support Analyst is part of the Application Management team and provides Level 2 support for software used by internal statistics teams. The position focuses on troubleshooting and resolving known and documented issues within defined procedures and escalating unfamiliar or complex problems to third-level support.Monitor and manage incoming support tickets using Jira as the main tool for tracking and communication.Investigate and resolve routine incidents related to application functionality, primarily for statistical software systems.Follow established documentation and procedures for problem resolution, ensuring consistent application of solutions.Utilize SQL to query databases, analyze errors, and support the resolution of standard data- or report-related incidents.Execute Unix commands to assist with problem diagnostics, file handling, and basic system checks as required.Collaborate closely with more senior application support staff to expand technical knowledge and gain deeper product expertise over time.Document new findings and solutions encountered in the support process, contributing to the knowledge base.The scope of the role will evolve as familiarity with the supported systems and processes increases, allowing for gradual exposure to more complex issue resolution.

PermanentLuxembourgOn site
ICT
15/09/2025

Ingénieur Réseau et Sécurité Cloud – Luxembourg

L’ingénieur réseau et sécurité joue un rôle central dans la gestion, la sécurisation et l’optimisation des infrastructures réseau et cloud de l’entreprise.Ce poste s’articule autour de la conception, de la mise en œuvre et du maintien des environnements réseaux et de sécurité, notamment en ce qui concerne la gestion des solutions cloud, les dispositifs de sécurité réseau, et la continuité des services.Principales missions :Concevoir, déployer et maintenir les architectures réseau sécurisées sur site et dans le cloud.Assurer la configuration, la gestion et l’optimisation des routeurs et du routage.Mettre en place, superviser et administrer les pare-feux pour garantir la sécurité du périmètre réseau.Gérer la sécurité des endpoints de l’organisation, incluant le suivi, la configuration et le maintien des solutions de protection des postes utilisateurs et serveurs.Administrer et gérer les solutions d’infrastructure et cloud, notamment le support, la migration et la continuité de services sur des environnements variés (public, privé, hybride).Veiller à la bonne configuration, la gestion et le dépannage du DNS afin d’assurer la disponibilité et la performance des ressources réseau.Contribuer à la mise en place et à la gestion des systèmes d’identification des intrusions (IDS) et des VPN (Virtual Private Network) pour renforcer la sécurité et l’accès distant.Participer à la gestion et à l’optimisation de solutions cloud partenaires (ex. IBM Cloud, AWS, Azure Functions) selon les besoins opérationnels.Surveiller en temps réel l’intégrité et la performance des réseaux et systèmes, en mettant en place des mesures proactives pour garantir la résilience de l’écosystème numérique.Collaborer avec les équipes IT pour l’évolution de l’infrastructure, la gestion des incidents et la mise en conformité avec les politiques de sécurité internes et externes.Environnement linguistique :Collaboration et communication en français, tant à l’oral qu’à l’écrit.Interactions régulières en anglais, notamment pour la documentation technique, le support et la gestion de projets internationaux.Ce poste s’adresse à des missions variées, combinant expertise technique en sécurité et gestion réseau, avec une implication directe dans la gestion d’infrastructures hybrides et la sécurisation des environnements informatiques.

PermanentLuxembourgOn site

Le job de vos rêves n’est plus qu’à un clic.

Envoyez-nous votre CV et nous vous mettrons directement en contact avec l'un de nos recruteurs spécialisés qui vous guidera dans la recherche de l'emploi de vos rêves !

Numéro de téléphone
Phone
Candidats

Témoignages

Les consultants Gentis ont toujours tenu compte de plusieurs éléments afin de nous présenter les bons candidats. Les personnes que l'on a recruté sont toujours là et personnellement,je suis très content des personnes qu’on a récemment inclus dans l’équipe.
Joakin / Deputy-AMLCO, PPS
Les résultats sont impressionnants ! En 3 ou 4 ans, nous avons conclu plus de 20 contrats. Gentis offre un canal transparent pour communiquer avec les candidats via différentes sources.
Morgan / HR, CAF
Voir les études de cas
Blog

Derniers articles

15 min de lecture
17 janv. 2025

Comment mettre en place sa stratégie marque employeur ? Découvrez les 7 étapes

La marque employeur est un concept marketing indispensable à toute entreprise qui souhaite soutenir son attractivité et fidéliser ses talents. Si les raisons de construire une marque employeur solide et positive sont évidentes, ce travail, pour qu’il soit réussi, ne peut se faire en deux temps trois mouvements. Il demande de mettre en œuvre un certain nombre d’actions.

10 min de lecture
05 août 2024

Les tendances incontournables de l’employer branding en 2024

L'employer branding a évolué pour devenir un incontournable pour les entreprises qui cherchent à se distinguer dans la course aux talents.

15 min de lecture
15 mai 2024

Marque employeur : 7 erreurs à ne surtout pas commettre

Back Market, KPMG, Dassault, Shine… Ces entreprises de taille différente ont une marque employeur forte leur garantissant une attractivité et une fidélisation à faire pâlir leurs concurrents.

Marque Employeur
Voir plus

Rejoignez notre communauté active de professionnels et découvrez votre potentiel.

Pour vous tenir au courant de nos dernières actualités.