Trust is our business, and Information Security is crucial for KPMG and its clients. To further enable our ambitious growth targets whilst maintaining and continuously improving our Information Security (IS) posture KPMG is currently redefining its IS function. As part of this transformation initiative we are recruiting a Chief Information Security Officer (CISO).

The CISO plays a pivotal role in this transformation and is expected to actively contribute to the definition of our new IS Target Operating Model (TOM). This is a unique opportunity where you can still weigh in on the TOM for the entire IS function. As CISO you will also take ownership of the subsequent projects to realize the transformation, after which you will be responsible to manage and oversee all aspects of information risk and security within the KPMG Belgium member firm. You report to the COO and will be interacting regularly with KPMG International’s Global CISO and your peers in other KPMG member firms.

As CISO you will:

• Manage and oversee all aspects of information risk and security within the network of KPMG member firms in Belgium.
• Implement and enforce KPMG’s Global Information Security Policies (GISP) and Security Standards, with the authority to initiate and execute local IS efforts in light of the KPMG BE firm needs. For this you will work with the CFO and CIO to budget and plan accordingly.
• Coordinate with other aspects of the business including Physical Security, Legal, HR, IT, and the DPO.
• Serve as the single point of contact for all client information security queries and requirements.
  Help to deliver IS training and implement/maintain a comprehensive awareness campaign program.
• Ensure that appropriate policies and controls are enforced upon third parties and/or subcontractors to the KPMG BE firm in order to protect the firm’s infrastructure and data.
• Assess IS risks and provide risk assessment signoff for new vendors and/or technology solutions.
• Work with the CIO to ensure that Security Operations residing within the IT department operate efficiently and within GISP and local requirements.
• Support ongoing compliance efforts and manage the annual KPMG BE member firm internal audit.

If you feel this position is something for you then we probably don’t even have to explain what kind of qualifications this role requires. Of course, you are an experienced professional and have worked in risk management and/or information security positions for a number of years. Maybe you hold the position of CISO currently, but if you think you are ready for that next move in your career also get in touch (ambition and eagerness is something we can appreciate).

You know all the acronyms (ISO27001, NIST, ISAE, SOC, …) but can also demonstrate you have already applied the related principles/policies/practices in an Enterprise context. And having a formal accreditation (CISSP, CISM, …) is an asset, but you know that what really matters is the ability to apply theory in real life.

So, assuming all of the above is at CISO level (and we’ll definitely talk about this during our first conversation), what are we looking for and where you can make the difference?

• Communicate
• Balance
• Prioritize
• Collaborate
• Connect
• Decide

Last but not least, we are really a bunch of nice people around here (really, you’ll know right away during our first conversation), and we do expect the same from our new CISO. Did we mention our #Together value already?

• A corporate culture in which personal growth, mutual trust and lifelong learning are being fostered.
• An inclusive workspace that encourages diversity and pursues mutual respect for each other’s beliefs and background.
• Professional experiences in an international and dynamic working environment with inspiring colleagues.
• Flexible, hybrid work arrangements to enable working on different locations: home office, on-site or on the go.
• A wide range of teambuilding activities and social events that enable new joiners to meet colleagues within the wider KPMG community and have some fun along the way.

#LI-WT1
#InformationSecurity
#CISO
#KPMG