Senior Information Security Officer

As provider of essential energy services on the Belgian Market (NIS regulation), and in order to guarantee services continuity to its own customers, protect their personal data (GDPR), Luminus has to ensure the security of its own Network and Information systems.

Currently, Luminus has two security operations departments—one overseeing the IT perimeter and the other managing the OT perimeter. To enhance overall security, manage risks effectively, and optimize security investments, Luminus aims to strengthen its group security governance. This involves appointing a Senior Information Security Officer and establishing an Information Security Forum.

The Senior Information Security Officer, responsible across the entire Luminus group, is tasked with

• Identifying and prioritizing cybersecurity risks and reporting them to Group executives.
• Addressing identified risks by defining the information security roadmap.
• Developing and maintaining security policies, ensuring their implementation across various entities within the Luminus group.
• Identifying compliance obligations for different departments

While overseeing these responsibilities, the Senior Information Security Officer delegates the implementation of policies and security capabilities to IT, OT, business departments, and affiliates.

To achieve these objectives, the Senior Information Security officer:

• Designs and integrates a cybersecurity strategy that outlines the vision, mission and goals aligned with the organization's strategic plan.
• Collaborates with key stakeholders to establish a cybersecurity risk management program for all relevant business departments, IT, OT, subsidiaries, and affiliates.
• Reports on the progress of implementing the cybersecurity roadmap.
• Provides guidance to IT, OT, and business departments on developing security capabilities.
• Works closely with the Data Protection Officer (DPO), IT and OT security operations managers.
• Offers strategic leadership to IT, OT, and business departments, ensuring seamless integration of security measures.
• Represents Luminus in interactions with external stakeholders, regulatory bodies, and partners on security related matters and chair of the Information Security Forum (ISF).

Additionally, the Senior Information Security Officer:

• Acts as the first point of contact for internal and external audits.
• Supports the operations team during major incidents by liaising with authorities.
• Stays continuously updated on technological (OT, IT) and business evolutions.

Skills

• Effectively communicate with both technical and non-technical staff
• Clearly articulate the organization's security posture to senior management
• Skills in creating policies that reflect system security objectives
• Excellent knowledge of risk management processes

Knowledge & experience

• Fair understanding of the energy market, related IT, OT assets and technologies.
• must have extensive knowledge of security technologies and processes as well as a strong understanding of business and risk management
• Preferably a background in information security, computer science, computer engineering or another related field.
• Must have a relevant master’s degree or gained equivalent knowledge
• Minimum of 10 years of experience in information security, with at least 5 years in a leadership role
• Relevant professional certifications, such as CISSP, CISM, or ISO27001 Lead implementer.
• You are business proficient (B2+) in English and French