About Brussels Airlines

Brussels Airlines, part of the Lufthansa Group, is the national airline of Belgium with its home base at Brussels Airport.
Our mission is to be the most reliable airline, making everyone feel at home.
We are passionate about what we do, whether it’s on board, in an office, in the hangar or at an airport. Our people are recognized for always going above and beyond and for constantly challenging themselves. 

Purpose of the position

The Compliance Manager is responsible for developing, implementing and maintaining information compliance controls for multiple internal compliance policies (ISO27001 ISMS, GDPR, PCI-DSS, …). The goal is to ensure that the organization, processes and assets are managed in accordance with the Brussels Airlines Compliance Policy as well as international standards, and to maintain compliance risks as low as possible. The manager also supports different business units in defining, implementing and maintaining a compliant organization with regards to the abovementioned policies.

The IT and Ground Operations (GOPS) Compliance Manager have complementary processes to manage in respectively the IT area and the GOPS area. They work closely together and are jointly responsible for the compliance level of Brussels Airlines. They report into IT and GOPS and are each other back up.

Main tasks & responsibilities

As a Compliance Manager you will be responsible for the compliance on ISMS (ISO27001), PCI-DSS, internal procurement policies and GDPR in your respective area (IT or GOPS). Your activities will be as followed:

Support and advise internal stakeholders

• Support IT, Ground Operations and relevant business units in the definition and implementation of compliance controls;
• Coordinate and monitor the execution of beforementioned controls;
• Define, implement and manage corrective actions when applicable;
• Provide advice on improvement of existing controls.

Support and guide third party suppliers, handlers and contractors

Development and maintenance of compliance standards

• Perform gap analysis to ensure that missing elements are integrated when & where relevant in the existing policies by proposing the necessary changes;
• Assure completeness of policies and assure that they are completely enforced in scope of the compliance requirements;
• Support IT & Ground Operations in compliance standards and procedures writing and updating, by providing guidance and performing QA.

Audits

• Ensure, prepare and lead the relevant audits and compliance verifications.

Reporting

• To present the compliance results and remediation actions to the attention of senior management level;
• To provide a compliance view (KPIs/ indicators of conformity) towards internal stakeholders and different monitoring bodies.

Your profile

• Bachelor degree (or equivalent through experience);
• Knowledge of aviation industry is a plus;
• 2-5 years of experience in IT / Information Security / GOPS or in a compliance environment;
• Knowledge of GRC tools;
• A good understanding of GDPR / PCI regulations and policies is a plus;
• Certified ISO27001 Lead Implementer is a plus;
• Experience in developing and implementing policies and / or processes (in IT);
• Project management / coordination skills;
• Experience in managing & working with multiple stakeholders;
• Experience in creating memos & report to senior management level;
• Strong knowledge of the applicable regulations with focus on ISO27001;
• Experiences with auditing & process evaluation;
• Good knowledge of or heavy interest in information security & risk management;
• Capability to quickly understand end-to-end process flows & control needs;
• Excellent verbal and written communication, negotiation skills & assertiveness;
• Good communicator and people leader
• Analytical expertise: handle & present complex content, have process mapping skills;
• Willingness to take responsibility and to make objective decisions on several levels;
• Strongly organized & structured, independent & solution-oriented;
• Discretion & integrity;
• Resilience in stressful situations;
• Fluent in English, preferably a good understanding of French.

What we offer

• A flexible reward plan that allows you to optimize part of your salary;
• A flexible work environment focused on activity-based working & home office possibility;
• Travel benefits;
• Company car (or car allowance) or an attractive mobility budget
• Profit sharing;
• Group insurance;
• Company medical plan (optional);
• Meal & eco vouchers;
• Representation & homeworking allowance;
• A spot in a very enthusiastic team & a great company to work for;