Consulting: Manager - IT GRC

We are looking for a highly skilled IT GRC Manager to join our Tech Consulting – Cyber and Digital Risk Services team. The role combines technical expertise with client-facing consulting, including leading diverse teams, providing coaching, and building long-term client relationships.

Requirements

• Bachelor's or master's degree in information technology, Cybersecurity, Risk Management, or a related field.
• Professional certification such as ISO27001, ISO 22301, ISO 31000, CRISC, CGEIT, CISM, or CISSP is preferred (not mandatory).
• Minimum of 5 years of experience in IT GRC, with a focus on consulting or advisory services.
• Expertise in at least one of the following areas: IT Risk Management/Transformation, IT Governance, Operational Resilience, Third-Party Risk Management, GRC Tooling, Data risk.
• Knowledge and experience with GRC tools such as ServiceNow, AuditBoard, etc are a plus
• Proven track record of delivering high-quality consulting services to clients.
• Strong understanding of IT governance frameworks (e.g., COBIT, ITIL) and risk management methodologies.
• Familiarity with compliance standards and regulations such as ISO 27001, GDPR, DORA, CSSF Circulars, etc.
• Exceptional analytical, problem-solving, and project management skills.
• Excellent communication, presentation, and interpersonal skills, with the ability to engage effectively with clients at all levels.
• Native French or Luxembourgish speaker, with an excellent knowledge of business English.

Benefits

• Competitive salary
• Flexible environment
• Diverse and inclusive culture of globally connected teams
• World-class experiences