Head of Cybersecurity Division - based in Luxembourg

Overview

Head of Cybersecurity Division - based in Luxembourg

Join to apply for the Head of Cybersecurity Division role at European Investment Bank (EIB).

This position is based at our Luxembourg headquarters and requires regular office presence. The EIB offers relocation support and a truly international, multi-cultural environment.

This is a full-time position at grade 7 with a permanent contract.

Responsibilities

• Lead and shape the Cyber Security group function across all technical cybersecurity domains, including engineering, operations, monitoring and architecture
• Define and implement cybersecurity policies, standards and controls, overseeing incident detection, response and remediation of vulnerabilities in line with banking best practices and regulatory expectations
• Monitor and anticipate emerging threats and technology trends, translating them into a strategic security roadmap and actionable improvements; follow up on audit and risk recommendations
• Oversee Business Continuity and Disaster Recovery frameworks, ensuring risk assessments, testing, and crisis response plans maintain resilience of critical banking services
• Manage Identity and Access Management (IAM) to ensure secure and compliant access to data and systems, including privileged access monitoring and periodic recertification
• Ensure IT compliance and risk alignment, coordinating with internal stakeholders and regulators to maintain a robust control environment
• Build and inspire a high-performing cybersecurity team, fostering collaboration, continuous learning and a culture of security awareness

Qualifications

• University degree (minimum bachelor) in computer science, information technology or related field, or in business administration
• At least 10 years of professional IT experience, particularly in security, ideally in international financial institutions and/or the private sector
• Experience in managing and coaching people in multicultural environments or international organisations
• Strong knowledge of IT security practices, standards and current best practices
• CISM or CISSP certification
• Strong analytical skills, integrity and responsibility
• Experience establishing cybersecurity and risk metrics for reporting
• Familiarity with banking regulations and frameworks (e.g., DORA, GDPR, ISO/IEC 27001)
• Experience with agile methodologies, routines and tools; knowledge of market trends in IT
• Excellent knowledge of English and/or French, with good command of the other; knowledge of additional EU languages an advantage

Competencies and other information

Proficiency in both English and French is a prerequisite for career development; language clauses must be fulfilled in the contract. The Bank offers training support. We hire and value talent with diverse backgrounds and encourage applications from all qualified candidates regardless of gender identity, age, race, ethnicity, religion, sexual orientation, disability or neurodiversity. Reasonable accommodations available upon request during recruitment.

Deadline for applications: 12 September 2025.

Seniority level

• Not Applicable

Employment type

• Contract

Job function

• Information Technology
• Industries: Banking

By applying, you acknowledge the importance of maintaining the security and integrity of information within the EIB Group and agree to comply with all measures to prevent unauthorized disclosure.