Information Security & IT Operations Officer

About the role

LUXUAV is seeking an Information Security & IT Operations Officer to lead its cybersecurity strategy and keep the corporate network and user devices secure on a daily basis. The role combines governance, risk management and hands‑on technical work in a fast‑growing UAV ecosystem.

Key responsibilities

• Define and maintain the cybersecurity strategy, policies and ISMS aligned to ISO/IEC 27001.
• Operate the risk register, conduct risk assessments and drive treatment decisions.
• Report cyber risk, incidents and posture to senior management.
• Ensure compliance with GDPR, NIS2 and customer security requirements.
• Manage relationships with Luxembourg and EU cybersecurity authorities and lead audits.
• Operate SSO, MFA, joiner‑mover‑leaver workflows and privileged access management.
• Own the incident response plan, run tabletop exercises and lead post‑incident reviews.
• Run the security awareness programme for onboarding and ongoing training.
• Design, document and operate segmented corporate and lab networks, VLANs, wireless and guest isolation.
• Configure firewalls, VPN or zero‑trust access with device posture and MFA.
• Define and enforce hardened endpoint baselines for Windows, macOS and Linux (EDR, encryption, host firewall, removable‑media controls).
• Manage the full lifecycle of corporate devices, including MDM/UEM enrolment, patching and secure disposal.
• Run vulnerability scanning, prioritisation and remediation with measurable SLAs.
• Provide first‑line IT support and resolve user hardware and software issues.

Required profile

• Proven experience in information security and IT operations within a regulated environment.
• Hands‑on mindset with ability to design, implement and maintain security controls.
• Strong communication skills to report to senior management and interact with external authorities.

Required skills

• ISO/IEC 27001
• GDPR
• NIS2
• Risk assessment & risk register
• Incident response & security awareness
• SSO & MFA
• VPN & zero‑trust access
• Network segmentation, VLAN, firewall configuration
• Enterprise wireless & guest isolation
• Endpoint Detection and Response (EDR)
• Disk encryption, host firewall, removable‑media controls
• MDM/UEM
• Patch management & vulnerability scanning
• Windows, macOS, Linux