Gentis
Gentis
Home

JobsMissionsMediaUse cases
Je kunt ons altijd bereiken via
hello@gentis.com

Onze laatste vacatures

Vind uw droombaan!

Security Solution Analyst - GRC Cybersecurity

30/10/2024
PermanentSaudi ArabiaOn site17000 SR21000 SR
Kopiëren naar klembord
Functieomschrijving

A leading organization in Saudi Arabia is seeking a Cybersecurity Compliance Officer to join their GRC team. The role focuses on developing and maintaining security governance frameworks, policies, and procedures to ensure alignment with regulatory requirements. The candidate will drive compliance with national cybersecurity regulations, data protection laws, and international security standards.


Key responsibilities include monitoring regulatory compliance, conducting internal security assessments, managing GRC technology platforms, and coordinating external audit engagements. The position requires regular reporting to GRC leadership and supporting organizational certification initiatives.


The ideal candidate will have experience in implementing and maintaining comprehensive security compliance programs while ensuring adherence to industry and regulatory requirements.


Detailed Responsibilities:

  • Develop and maintain comprehensive cybersecurity governance frameworks, policies, and procedures ensuring alignment with regulatory requirements, including NCA controls.
  • Drive compliance with key security standards and regulations including PDPL, ISO 27001, and other applicable frameworks. Monitor and implement emerging requirements.
  • Perform technical security reviews of system configurations, network architecture, and control implementations to validate compliance and security best practices.
  • Lead internal security assessments and compliance reviews to identify and remediate control gaps.
  • Implement and administer GRC automation platforms to enhance compliance monitoring efficiency and reporting capabilities.
  • Design and oversee control attestation procedures, working with control owners to validate and document control effectiveness.
  • Develop and execute third-party security assessment program to evaluate and monitor vendor security practices.
  • Generate regular security status reports for GRC management. Effectively communicate security risks, issues and recommendations to key stakeholders.
  • Manage external audit engagements and certification processes to ensure successful outcomes and continued compliance.
Profielbeschrijving

Key Competencies:

  • Information Security Governance: Advanced knowledge of security frameworks, policies, and strategic integration of security with business operations. Strong understanding of cyber resilience principles.
  • Regulatory & Standards Expertise: Comprehensive understanding of data protection laws, international security standards (ISO), and industry regulations. Ability to interpret and apply evolving requirements.
  • Technical Security Knowledge: Proficiency in assessing system security configurations, network architecture, and control implementations. Deep understanding of security best practices.
  • Security Assessment: Expert capability in conducting security assessments and compliance reviews. Strong analytical skills in control effectiveness evaluation.
  • GRC Technology: Advanced knowledge of GRC platforms and automation solutions. Expertise in optimizing compliance monitoring and reporting processes.
  • Control Framework: Deep understanding of control validation procedures and attestation processes. Knowledge of control documentation best practices.
  • Third-Party Security: Expert knowledge of vendor security assessment methodologies and supply chain risk management principles.
  • Strategic Communication: Strong ability to articulate complex security concepts to various stakeholders. Excellence in security status reporting and presentation.
  • Audit Management: In-depth knowledge of external audit and certification processes. Strong understanding of audit evidence requirements and remediation approaches.
  • Policy Architecture: Expert understanding of control frameworks and their relationship to organizational policies. Proficiency in mapping security requirements to operational controls.


Core Responsibilities:

  • Information Security Governance: Develop and oversee security frameworks, policies, and procedures aligned with business objectives. Integrate security strategy with operations to maintain business continuity and cyber resilience.
  • Regulatory & Standards Management: Ensure adherence to data protection laws, international security standards (ISO), and industry regulations. Monitor evolving requirements and update security practices accordingly.
  • Technical Security Oversight: Assess and validate system security configurations, network architecture, and control implementations against security requirements and industry best practices.
  • Security Assurance: Lead internal security assessments and compliance reviews. Evaluate control effectiveness and drive continuous improvement initiatives.
  • Technology & Process Optimization: Implement and manage GRC platforms and automation solutions to enhance compliance monitoring and reporting efficiency.
  • Control Management: Design and maintain control validation procedures, ensuring proper documentation and attestation from control owners.
  • Third-Party Risk Management: Develop and execute vendor security assessment programs. Evaluate and monitor external partner security postures to manage supply chain risks.
  • Stakeholder Management: Deliver regular status updates to GRC leadership on security posture and program effectiveness. Drive clear communication channels with key stakeholders.
  • Audit Coordination: Support external audit engagements and certification processes. Partner with auditors and internal teams to facilitate successful outcomes.
  • Policy Framework Administration: Maintain unified control framework mapping security requirements to organizational policies. Establish clear relationships between policies, standards, and operational controls.


Education & Professional Certifications:


· Advanced degree in Computing/Technology field (Bachelor's/Master's in Computer Science or related)

· Governance, Risk & Compliance certification (ISC2 GRC)

· CISSP (Certified Information Security Professional)

· CISA (Certified Information Systems Auditor)

· Security Controls Framework certification (SANS SEC566)

· OSCP (Offensive Security Certified Professional)

Kopiëren naar klembord

Vergelijkbare banen

Engineering
30/06/2025

Project Manager Medium Voltage

As a Project Manager specializing in Medium Voltage, you will reinforce our dynamic Electrification & Automation team. Your main responsibility is the end-to-end management of medium voltage projects, ensuring technical and operational excellence at each stage.Analyze technical project specifications to understand customer requirements and ensure technical alignment.Verify and clarify solutions by directly interacting with clients through meetings to address technical questions and confirm expectations.Oversee engineering launch and management, guiding technical teams from concept through execution.Configure electrical boards using specialized configuration tools to meet project specifications.Initiate orders to manufacture and monitor production processes to ensure timely and accurate delivery.Coordinate project planning with various stakeholders, aligning schedules and resources for seamless execution.Maintain consistent communication with clients, providing technical updates throughout the project lifecycle.Manage resources such as technicians and subcontractors, ensuring everyone works towards project goals.Participate in Factory Acceptance Tests (FAT) to verify system conformity before delivery.Organize on-site deliveries and Site Acceptance Test (SAT) activities, ensuring project handover meets standards.Monitor financial and quality KPIs, tracking progress and cost-effectiveness against set benchmarks.Enforce project safety standards to uphold and cultivate a safety-first culture across all activities.Provide regular project progress updates to both clients and internal teams, ensuring transparency and alignment.The scope of this role includes analyzing medium voltage systems, hands-on project planning, technical and economic solution optimization, and stringent adherence to industry regulations. The successful project manager will be required to work interchangeably in French, Dutch, and English, facilitating communication with clients nationwide and internationally.Qualification requirements include a Bachelor's or Master's degree in Electrical Engineering (or related field), solid experience in project management for medium voltage systems, and a strong command of medium voltage regulations and technical standards. Proficiency in MS Office tools and knowledge of German are advantageous.

PermanentBelgiumOn site
ICT
30/06/2025

Cybersecurity Engineer – Railway Systems (Hybrid, Charleroi)

Location: Charleroi · Hybrid, with 3 days on-site per week · Limited travel (<10%), mainly within EuropePosition Overview: This role focuses on cybersecurity risk assessment and secure architecture design specifically for railway systems. The responsibilities are strategic and analytical — not operational or hands-on.Conduct risk analyses for railway subsystems and components.Define secure system architectures and establish security requirements across critical areas.Identify protection points and recommend robust risk mitigation strategies.Ensure compliance with relevant cybersecurity standards and regulations (IEC 62443, ISO 27001, NIS2).Work collaboratively with systems, software, and safety teams to align cybersecurity efforts.Validate cybersecurity implementations through structured reviews, analysis, and testing.Support the development of cybersecurity validation strategies and confirm system resilience.Coordinate with internal stakeholders, clients, and suppliers as part of multidisciplinary project teams.Prepare comprehensive documentation, including security cases, compliance reports, and risk management plans.Essential Requirements:Master’s degree in cybersecurity, engineering, computer science, or related field.Strong knowledge of cybersecurity principles, risk assessment, and secure system design.Understanding of security systems and regulatory compliance for safety-critical environments.Proficient in technical documentation and regulatory reporting.Fluent in English; knowledge of French, German, or Italian is advantageous.Valuable Experience:Familiarity with railway signaling or other complex safety-critical infrastructure.Experience with ISO 27001 and IEC standards in transportation or industrial domains.Insight into security governance, validation, and compliance processes for large-scale systems.

Fixed termBelgiumHybrid
Finance
26/06/2025

Senior Fund Accountant

Job DescriptionPosition Overview: The Senior Fund Accountant will be a key member of the Fund Administration team, supporting the Team Manager in ensuring accurate and timely NAV calculations, strong internal controls, and full regulatory compliance across mutual fund operations. The role focuses on safeguarding service continuity for North American clients and ensuring operational excellence in mutual fund administration.Assist the Team Manager in validating daily Net Asset Values (NAV), applying rigorous quality controls throughout the production cycle.Supervise NAV production for assigned mutual funds, ensuring accuracy, timeliness, and compliance with internal and external standards.Perform detailed quality reviews of fund accounting outputs, resolve discrepancies, and approve NAVs prior to release.Monitor operational risks and ensure adherence to policies, procedures, and applicable regulations.Contribute to process improvements by identifying inefficiencies and implementing best practices for automation, accuracy, and scalability.Provide technical guidance and support to team members on complex accounting treatments and fund structures.Serve as subject matter expert on mutual fund accounting and valuation methodologies.Actively participate in operational meetings and ensure alignment of deliverables within the team and with external stakeholders.

PermanentQuébec CanadaHybrid
ICT
25/06/2025

Expert Kafka

Kafka Full-Stack Developer responsible for designing, developing, and maintaining software solutions with a strong focus on Apache Kafka within multiple system architectures. The role involves working across the technology stack, ensuring high-quality integration of streaming and messaging components, and collaborating with stakeholders to deliver scalable, robust, and high-performance systems.Design and implement full-stack applications leveraging Kafka for real-time data streaming and messaging.Develop, test, and deploy microservices and APIs, ensuring seamless integration with distributed systems.Collaborate with back-end and front-end engineers to deliver end-to-end solutions.Optimize message flows and troubleshoot issues in data pipelines.Participate in code reviews and contribute to technical documentation to maintain high engineering standards.Communicate technical decisions and architectural designs in clear, business-friendly English.The position balances software engineering practices with deep expertise in Kafka, enabling efficient data movement through modern, scalable architectures. Focus is on technical problem-solving and effective delivery of streaming-based business solutions.

PermanentBelgiumOn site
ICT
24/06/2025

Développeur Java Back-End (3 ans d'expérience)

developpeur java 3 ans d'ancienneté

Fixed termLuxembourgOn site
ICT
20/06/2025

ICT Security Risk Officer – Banking Compliance

Job SummaryThe ICT & Security Risk Officer will play a key role in supporting the organization’s cybersecurity and information security risk management framework. This dual-role position is responsible for assisting in the implementation of security policies, monitoring IT risks, and ensuring compliance with industry standards and best practices. The successful candidate will work closely with IT, Risk, Compliance departments, and business units to safeguard digital assets and minimize cybersecurity threats.Key Responsibilities Information Security Responsibilities:Assist in the development and enforcement of security policies, procedures, and guidelines.Monitor and analyze security alerts, incidents, and vulnerabilities, and provide recommendations for mitigation.Support the management of security awareness programs and training for employees.Participate in security assessments, penetration testing, and vulnerability scans.Assist in reviewing and implementing access control measures to protect sensitive data.Contribute to incident response planning and support investigations when necessary.Stay updated with emerging threats, vulnerabilities, and security trends.ICT Risk Responsibilities:Assist in identifying, assessing, and mitigating IT and cybersecurity risks.Support the execution of ICT risk assessments and audits.Maintain risk registers and track remediation actions to reduce exposure to threats.Contribute to business continuity and disaster recovery planning and testing.Ensure compliance with regulatory and industry standards such as ISO 27001, NIST, GDPR, DORA and other relevant frameworks (CSSF and others).Work with internal teams to implement risk management strategies and controls.Prepare reports and presentations on security and risk findings for management.

PermanentLuxembourgOn site

De perfecte match is nog maar één stap hiervandaan.

Stuur ons direct uw CV en wij brengen u in contact met een van onze gespecialiseerde recruiter die u zal begeleiden in de zoektocht naar uw droombaan!

Telefoonnummer
Phone
Kandidaten

Referenties

De consultants van Gentis hebben altijd rekening gehouden met een aantal factoren om ons de juiste kandidaten voor te stellen. De kandidaten die we hebben aangeworven, werken nog steeds bij ons en persoonlijk ben ik erg tevreden dat we ze onlangs in ons team hebben opgenomen.
Joakin / Deputy-AMLCO, PPS
De resultaten waren indrukwekkend! In 3 tot 4 jaar hebben we meer dan 20 deals gesloten. Gentis biedt een naadloos kanaal om via verschillende wegen in contact te komen met kandidaten.
Morgan / HR, CAF
Bekijk de casestudies
Blog

Laatste artikels

15 Min gelezen
17 jan 2025

Een succesvolle employer branding-strategie, in 7 stappen

Employer branding is essentieel voor elk bedrijf dat talent wil aantrekken én behouden. Er zijn tal van goede redenen om een sterk merk als werkgever uit te bouwen. Maar zoiets doe je niet van vandaag op morgen. Hoe pak je dat aan, starten met employer branding?

10 Min gelezen
05 aug 2024

De strafste employer branding-trends van 2024

Employer branding is in sneltempo uitgegroeid tot een echte must voor werkgevers die het verschil willen maken, in de strijd om toptalent.

15 Min gelezen
15 mei 2024

7 risico’s die jouw imago als werkgever beschadigen

Bedrijven investeren vandaag aanzienlijke budgetten in de marketing van hun merk als aantrekkelijke werkgever.

Employer Branding
Bekijk alles

Sluit aan bij onze community van professionals en ontdek je potentieel om een verschil te maken in de wereld.

Blijf op de hoogte van het laatste nieuws.