Information Security Officer
CDI Bertrange
Job description
The Opportunity
In the fast-moving and ever-evolving payment services industry, we require a senior Information Security Officer for Worldline Financial Services, with a deep understanding of payment security and regulatory requirements. You will act as a linchpin in the creation and maintenance of a robust information security structure that secures sensitive payment data and complies with international and regional standards. Your role extends beyond conventional security, ensuring the integration of security and compliance across business processes.
Day-to-Day Responsibilities
* Maintain security posture for one (or multiple) of Worldline FS divisions
* Lead and coordinate activities for the assigned division, and provide regular management updates.
* Work closely with DevOps teams and second line of defence (security, risk, internal control) colleagues
* Coordinate regulator & customer audits and ensure that identified risks are mitigated.
* Staying up-to-date with relevant laws, CSSF regulations, and industry standards (such as GDPR, HIPAA, PCI DSS,DORA, NIS2) that govern cybersecurity practices and ensuring the organization complies with these requirements.
* Managing and responding to security incidents, including assessing the situation, coordinating response efforts, and implementing containment and recovery plans.
* Conduct security risk assessments and manage security risk
* Collaborate closely with compliance officers to develop, standardize, and maintain information security management system (ISMS) that aligns with security policies tailored for the payment services industry.
* Stakeholder Collaboration: Partner with IT and business units to align security requirements and processes.
* Lead the regional alignment of security strategy with particular emphasis on the payment services sector, including ISO & PCI DSS compliance.
* Partner with the compliance, risk and business continuity office to interpret and implement regulatory and card scheme mandates, translating complex requirements into practical, executable procedures.
* Engage with legal and compliance teams to ensure that security policies and procedures reflect the latest developments in payment security regulations and best practices across various Worldline Financial Services jurisdictions, with primary focus on Luxembourg.
* Ensure regular reviews and security policy alignment across WL Luxembourg, adjusting and improving processes in accordance with changes in technology, threat landscape, and regulatory environment.
* Communicate effectively with key business stakeholders to implement security requirements that reinforce security while still facilitating efficient business operations.
* Provide oversight over the implementation of security requirements by regional information security teams, conducting regular audits and knowledge assessments.
* Establish a culture of continuous improvement of information security.
What We Are Looking For
We look for big thinkers. People who can drive positive change, step up and show what’s next – people with passion, can-do attitude and a hunger to learn and grow. In practice this means:
* At least 7 years of cybersecurity experience, with significant expertise in the payment services industry and at least 5 years in an information security officer role.
* Bachelor’s or master’s degree in Cybersecurity, Information Systems, or related field; MBA or related business management qualification is desirable.
* Professional security management certifications such as CISSP, CISM, CISA, or PCI-P (Payment Card Industry Professional).
* Demonstrated ability to strategically manage cybersecurity in a complex payment services environment involving point-of-sale systems, online payments, and mobile payment platforms.
* Strong business acumen with the capacity to balance payment security requirements with customer experience and operational efficiency.
* Proven leadership capability in guiding a team operating across diverse legal and cultural backgrounds within the payment services sector.
* Proficiency in English is essential, with additional language skills (French, German) highly valued.
Desired profile
We look for big thinkers. People who can drive positive change, step up and show what’s next – people with passion, can-do attitude and a hunger to learn and grow. In practice this means:
* At least 7 years of cybersecurity experience, with significant expertise in the payment services industry and at least 5 years in an information security officer role.
* Bachelor’s or master’s degree in Cybersecurity, Information Systems, or related field; MBA or related business management qualification is desirable.
* Professional security management certifications such as CISSP, CISM, CISA, or PCI-P (Payment Card Industry Professional).
* Demonstrated ability to strategically manage cybersecurity in a complex payment services environment involving point-of-sale systems, online payments, and mobile payment platforms.
* Strong business acumen with the capacity to balance payment security requirements with customer experience and operational efficiency.
* Proven leadership capability in guiding a team operating across diverse legal and cultural backgrounds within the payment services sector.
* Proficiency in English is essential, with additional language skills (French, German) highly valued.}
About Worldline
Worldline [Euronext: WLN] is the European leader in the payment and transactional services industry. With innovation at the core of its DNA, Worldline’s core offerings include pan-European and domestic Commercial Acquiring for physical or online businesses, secured payment transaction processing for banks and financial institutions, as well as transactional services in e-Ticketing and for local and central public agencies. Thanks to a presence in 30+ countries, Worldline is the payment partner of choice for merchants, banks, public transport operators, government agencies and industrial companies, delivering cutting-edge digital services. Worldline’s activities are organized around three axes: Merchant Services, Financial Services including equensWorldline and Mobility & e-Transactional Services. Worldline employs circa 11,000 people worldwide, with estimated pro forma revenue of circa 2.3 billion euros on a yearly basis. worldline.com