Information Security Officer


Across the last decades, data has become a cornerstone for multidisciplinary research, digital and precision health. At the LIH, the Department of Medical Informatics (DMI) is in charge of promoting and ensuring that researchers and clinicians can fully leverage patient information. With its expertise in Information Technologies (IT) and data science, the DMI assists and supports medical research at LIH and the national level. The primary mission of the DMI is to provide and maintain a safe and secure IT ecosystem for researchers and clinicians, where they can collect, store, analyze and share data from different sources, ranging from studies, registries, laboratories, health systems and public datasets. This includes establishing and maintaining a national data integration centre, in close collaboration with national partners, to enable the gathering, management and dissemination of interoperable health data in a quality-managed environment.

We are seeking an experienced and motivated Information Security Officer to join our dynamic IT Strategy & Management (S&M) Unit under the DMI. This role involves collaborating with cross-functional teams, planning, organization, implementation and continuous improvement of the processes within LIH. The mission includes supporting the set-up of an Information Security Management System (ISMS) in line with ISO 27000 standards and NIS2 and in compliance with other standards and regulations (e.g. ISO 9001, ISO 17025, GCP…). This includes support on developing, implementing, and monitoring information security programs to ensure adherence to best practices, normative and regulatory requirements (e.g. GDPR, NIS2 and EHDS).

Key Accountabilities:

  • Contribute under the direction of the Information Security Manager to the development, implementation, documentation and maintenance of information security policies, procedures, and LIH processes in close collaboration with DMI units and other institutional functions to ensure compliance with normative and regulatory requirements.
  • Support the design and operation of the ISMS in accordance with ISO 27001 standards, and in compliance with related regulatory requirements (GDPR, NIS2, EHDS, AI Act).
  • Coordinate with different department heads and staff under the direction of the Information Security Manager to ensure the effective implementation of the ISMS within operational and research processes.
  • Support the effective application of information security controls, IT risk assessments, and IT incident management in the scope of continuous improvement in process effectiveness and efficiency.
  • Conduct routine reviews and assessments to ensure compliance with policies and standards and identify areas for improvement.
  • Deliver information security training and onboarding sessions on information security and IT processes to raise awareness, enhance staff understanding, compliance and engagement in information security changes.
  • Contribute to the continuous improvement of the function through ongoing professional development and awareness of developments in information security.

Key skills, Experience and qualifications:

  • Proven experience in information security management, preferably within a research environment.
  • Strong knowledge and hands-on experience in the application of ISO 27000 standards and NIS2.
  • Excellent communication skills and the ability to effectively articulate complex information to both technical and non-technical audiences.
  • Good writing and presentation skills in English.
  • Language skills: French and/or German is an asset.
  • Demonstrated ability to organize and prioritize work.
  • Strategic thinking, problem-solving, and evidence- and risk-based decision-making skills.
  • Bachelor's or Master's degree in IT Security, or a related field. Certifications like CISSP, CISA, CISM, CRISC or ISO 27001 Lead Auditor/Implementer will be an added advantage.
  • Experience in a research environment, collaborating with healthcare professionals, and principal investigators (PIs) is a plus.

Benefits:

  • Cutting-Edge Work Environment: You will be part of a team at the forefront of medical research and data integration.
  • High-Impact Work: Your work will contribute to the advancement of medical research and technology, potentially transforming the lives of countless individuals.
  • Professional Growth: This role offers excellent opportunities for career development and growth.

Kurzum...

  • Contract type :  Fixed-term contract (CDD)
  • Contract duration :  24 months
  • Location :  rue Thomas Edison 1 A-B - 1445 LUXEMBOURG
  • Ref :  JA/ISO0726/EB/DMI

Wie man sich bewirbt

Bewerbungen mit einem Motivationsschreiben und einem Lebenslauf sind über unsere Website über den unten stehenden Bewerbungsbutton einzureichen.

Bitte bewerben Sie sich ONLINE förmlich über diese Webseite.

Bewerbungen per E-Mail werden nicht berücksichtigt.

Alle interessierten Bewerberinnen und Bewerber werden unabhängig von Alter, Geschlecht, Rasse, Behinderung, Religion oder ethnischem Hintergrund aufgefordert, sich zu bewerben.