Division: Chief Information Security Office (CISO)
As a global critical financial infrastructure, the protection of Euroclear information and assets is fundamental to the company’s business. Information Security is at the core of our services, firmly embedded in the management systems and processes of the company. You will be joining our Chief Information Security Office in charge of putting in place the required controls to adequately and effectively protect our information assets.
About the team
The Data Protection Services tribe protects Euroclear’s data assets from leak, loss or tampering by ensuring to have a clear view of all our data being classified by business critically and sensitivity with corresponding controls defined, operated and monitored and have the right mindset promoted to all Euroclear staff.
The GRC Squad plays a central role by integrating governance, risk, and compliance across data protection services, ensuring alignment with the Group Data Policy, regulatory obligations (. GDPR), and the Information Security Strategy. The squad supports secure business transformation driven by cloud adoption, AI, and increased external collaboration, while ensuring consistent governance, risk modelling, and reporting across the data lifecycle.
Please note that this is a permanent position, and we do not offer freelance or contract arrangements for this role.
Your role
As an Information Security Advisor in the GRC Squad, you support the implementation and operation of governance, risk, and compliance controls that help protect Euroclear’s data throughout its lifecycle. You contribute to translating regulatory, policy, and internal requirements into practical security and data protection measures, working closely with more experienced colleagues. You support initiatives and projects by providing input from a risk and compliance perspective and help ensure that risk‑based decision‑making is applied consistently.
The role involves participating in reviews of new products and applications, supporting assessments of application integrations, and contributing to the maintenance and improvement of procedures and documentation.
Success in this role means actively supporting the secure delivery of business and technology initiatives while continuing to build your knowledge and experience in data protection and GRC. You work collaboratively with stakeholders across IT, business, and security teams, developing over time into a reliable and knowledgeable member of the GRC community.
Your responsibilities & duties
1. Support in the definition and maintenance of governance, risk, and compliance requirements for data protection services in line with the Group Data Policy and Information Security Strategy and Standards.
2. Scope, qualify, and support data protection initiatives and demands in collaboration with product owners, program managers, and project leaders.
3. Review and challenge solution designs, integrations, and operating models from a data protection and risk perspective.
4. Support audits and regulatory reviews by providing clear risk assessments, control evidence, and remediation follow‑up.
5. Advise on data leakage prevention, encryption, anonymization, external file sharing, and Microsoft 365 data security governance.
6. Partner with IT and business stakeholders to embed data protection by design and by default across initiatives.
7. Contribute to continuous improvement of GRC processes, tooling, and automation within the squad.
Your qualifications required
Mandatory:
8. Bachelor’s or Master’s degree in IT, Computer Science, Engineering, or equivalent professional experience.
9. Limited experience in information security, data protection, GRC, or related domains within complex IT environments.
10. Foundational understanding of data security concepts such as data classification, DLP, encryption, anonymization, and access control.
11. Initial exposure to cloud and collaboration platforms, such as Microsoft 365, with an interest in understanding their security and data protection capabilities
12. Ability to understand regulatory and policy requirements and contribute to translating them into practical, risk‑based security controls, with guidance from more senior colleagues.
13. Good communication skills in English, with the ability to clearly explain ideas to both technical and non‑technical stakeholders.
14. Strong analytical mindset, curiosity, and willingness to ask questions and learn.
Nice to have:
15. Exposure (academic, internship, or early professional) to data protection or security tools such as DLP solutions, email security, or external file‑sharing platforms.
16. Initial familiarity with Microsoft Purview and/or Microsoft Defender, or a strong interest in developing skills in this area.
17. Limited experience working in consulting, project‑based, or client‑facing environments.
Will be considered an asset:
18. Early‑career or entry‑level cybersecurity certifications (or active preparation), such as SC‑900, ISO 27001 foundation, CRISC or similar.
19. Familiarity with Agile ways of working or structured delivery environments.
20. Ability to break down complex issues into manageable components and escalate risks or uncertainties appropriately.
21. Curious, solution‑oriented, and able to see the bigger picture while working on specific tasks.
22. Strong interest in emerging technologies and topics (such as AI, cloud, and data platforms) and how data security and protection requirements apply to them.
23. Proactive team player who contributes positively to team outcomes, seeks feedback, and helps ensure the team delivers high‑quality results.
Why Join Us
Embark on your new adventure at Euroclear, and work at the heart of the global capital markets. We connect over 2,000 financial institutions across the globe. As an open and resilient infrastructure, we contribute to the stability of the financial markets. We help clients cut through complexity, lower costs, and mitigate risks of financial transactions. At Euroclear, we have a clear ambition to use our key role to facilitate and accelerate a sustainable global financial system.
What We Offer
24. Work closely with inspiring, supportive, and engaged colleagues from more than 80 different countries
25. Practice your talents in a highly professional international environment
26. Join a learning and development environment with an emphasis on knowledge sharing and training
27. Competitive salary and comprehensive benefits
New Ways of Working
Find your own optimal balance within our hybrid working model, where you can connect at the office and at the same time benefit from remote working.
Great Place to Work for All
We are committed to creating an inclusive culture that celebrates diversity and strives to be a Great Place to Work for All. All qualified applicants will be considered for employment, regardless of any aspect that makes them unique (including race, religion, national origin, gender, sexual orientation, age, marital status, pregnancy, disability,. If you need any specific accommodation due to disability or any other reason, you can let the recruiter know during your application process.
#LI-YK1