Senior Information Security Officer

Senior Information Security Officer

Melexis Microelectronic Integrated Systems

Tessenderlo-Ham, Belgium

Your future job

As an Information Security Officer at Melexis, you will play a crucial role in developing and implementing the organization's security strategy, ensuring it aligns with our business goals. You will be responsible for assessing and mitigating security risks, ensuring compliance with relevant laws, regulations and standards, and promoting a strong security awareness culture within the company. This position requires a blend of technical expertise and the ability to effectively communicate security topics to both technical and non-technical stakeholders. Reporting to the General Counsel and in close collaboration with the IT Department, you will have a unique opportunity to shape Melexis's security posture and protect the organization from legal and regulatory risks.

More specifically, you will:

• Further develop and implement security strategies, security policies and procedures.
• Define and manage the Information Security program, translating the security strategies into actionable roadmaps and projects.
• Identify, assess, and mitigate cybersecurity risks, ensuring comprehensive management and minimization of cyber risk for the entire organization.
• Lead initiatives on integrating security measures within the Software Development Life Cycle (SDLC) to ensure secure coding practices and robust security testing inline with the latest industry standards.
• Actively collaborate with the IT and compliance teams to ensure security measures are seamlessly integrated and continuously improved within all business processes.
• Oversee incident response efforts, ensure compliance with legal obligations and regulatory requirements (NIS2), and ensure cyber resilience.
• Ensure compliance with frameworks like ISO 27001 and relevant legislation and standards.

Your profile

• A Bachelor's or Master's degree in Computer Science, IT, or a similar discipline.
• 10+ years of experience as a security professional.
• In-depth knowledge of IT processes and flows, with the ability to translate security topics into business language.
• Strong understanding of Information Security, legal and regulatory frameworks, including ISO27001, data privacy laws (e.g., GDPR), NIS2, industry-specific regulations, and other relevant legal requirements.
• Extensive knowledge of network security and design, intrusion detection systems, encryption, cloud security, privileged access management and application security.
• Experience in developing and implementing security strategies and roadmaps, defining and managing related programs and in policy drafting.
• Ability to work proactively, drive change, and collaborate effectively with both technical and non-technical teams.
• Certifications such as CISM or CISSP are a plus.
• Experience in securing Operational Technology (OT) environments is a plus.
• Experience in implementing cybersecurity measures within the Software Development Life Cycle (SDLC) is a plus.