Arendt & Medernach is the leading independent business law firm in Luxembourg. The firms international team of more than 380 legal professionals represents Luxembourg and foreign clients in all areas of Luxembourg business law from its main office in Luxembourg and representative offices in Hong Kong, London, Moscow, New York and Paris. Our service to clients is differentiated by the end to end specialist advice we offer, covering all legal, regulatory, taxation and advisory aspects of doing business in Luxembourg. Our firm advises international and domestic clients in all areas of business law relevant to their business activities, ranging from fund formation, banking, insurance, private equity and real estate to corporate and tax matters. To be based in our Luxembourg office, we are looking for a: Senior Information Security Officer IAM (m/f) Based in Hamm Your role: Information Security Officer Responsibilities Develop and enforce security policies, standards, and procedures to ensure compliance with legal and regulatory requirements. Lead risk assessments, security audits, and vulnerability assessments to identify potential threats and implement necessary safeguards. Monitor and analyze security alerts and respond to security incidents swiftly and effectively. Collaborate with IT teams to integrate security measures into their processes. Analyze, validate, and respond to security requests from end users, ensuring timely resolution and maintaining a high level of security awareness across the organization. Educate and train employees on security best practices and protocols. IAM Specialist Responsibilities Perform an audit of the current situation and solutions in terms of IAM. Develop and maintain a robust IAM framework that aligns with the organizations security policies and business needs according to security best practices and standards (ISO27001; CIS20;). Manage the lifecycle of user identities, roles, and permissions, ensuring proper access is granted based on job function (RBAC, etc). Gather the business requirements and analyze business processes through various approaches: workshops, one to one interviews with the different functions and teams, documentation analysis, etc Implement and maintain single sign on (SSO), multi factor authentication (MFA), and privileged access management (PAM) systems. Conduct periodic access reviews, audits, and recertification to ensure users have appropriate access rights. Investigate IAM related incidents and ensure corrective actions are implemented to prevent future occurrences. Your profile: You have a Master Degree in IT ideally with a strong focus in Security; You have at least 5 years experience as an IAM Specialist; You have experience in defining and implementing IAM strategies and solutions; You have a good knowledge of IAM protocols (OpenID, Oauth, SAML, Roll based Access, Claim Based Access); You have in depth understanding of security frameworks such as NIST, ISO 27001, and CIS Co