Job opening

Posting Title:Information Security Management
Job Location: Paris, France
Skill Required: IT And ICT,
Preferred Experience: 03-05 Years
Closing Date for Applications: 01th Oct, 2022

Apply Now
Information Security Management Job Description:

The Global Forum is looking for an Information Security Management (ISM) expert, who will work with jurisdictions participating in AEOI as part of their preparation and participation in a peer review with respect to ISM issues. S/he will report to the Global Forum’s Head of Unit for Technical Assistance.

Main Responsibilities

Information Security Management peer reviews and technical assistance

  • Participate in assessments of Information Security Management arrangements for member jurisdictions, including onsite visits, in conjunction with a team of ISM experts and provide technical input into the report of findings.
  • Review and provide technical input on ISM-related information and materials provided by members’ tax administrations.
  • Working with other Information Security Management experts, develop assessment principles across the various Information Security Managementassessment topics, especially IT security.
  • Prepare or compile model ISM-related policies, procedures, and other materials destined for jurisdictions receiving technical assistance.
  • Develop knowledge-building tools (toolkits, e-learning, etc.) and training courses on ISM-related topics.
  • Advise and coach member jurisdictions on Information Security Management-related issues and prepare responses in relation to members’ ISM-related technical queries.
  • Advise the Secretariat on the development and application of its processes for dealing with data breaches.
  • Provide tactical advice on incident management and support for the Global Forum’s breaches plan, as outlined in the AEOI framework.
  • Develop guidance and advice for member tax administrations on ISM aspects for the procurement and implementation of IT solutions for international EOI, including AEOI.
  • Develop and maintain effective processes for peer reviews and technical assistance
  • Develop and enhance the Secretariat’s internal work methods, tools, and processes to support the peer review work and technical assistance projects of the Global Forum Secretariat in the area of Information Security Management.
  • Test and improve the effectiveness of the Global Forum’s ISM peer reviews and technical assistance program on an ongoing basis.
  • Support the Secretariat’s policy proposals and discussions in the Global Forum meetings to refine peer review rules and processes on Information Security Management aspects.
  • Monitor relevant international developments related to Information Security Management and IT security and advise the Secretariat accordingly.
Ideal Candidate Profile

Academic Background

  • An advanced university degree in computing, information security management, or a related field.

Professional Background

  • A minimum of three, preferably five years of experience, in private and/or public sector organizations, in information security management, ICT and Cyber Security Management or ICT, Software and Security  Architecture, Project Management, and Systems Engineering capabilities.
  • Familiarity with the principles and practice of ISM, including relevant international standards such as the ISO/IEC 27000-series.
  • Comprehensive knowledge of the standards which govern the security of ICT systems within organizations.
  • Competence in Cyber Security and the application of Cyber security measures, including Standard Operating System Baseline controls; Domain Controller, Web, and Database Server Controls, Network Infrastructure, Audit and Logging Infrastructure, Gateway Infrastructure, and Firewalls.
  • Knowledge of governance issues; information security management policies; institutional risk management; vulnerability management; physical and logical access management; data lifecycle management; logging, monitoring, and audit; security incident and data breach management; internal/external audit.
  • Experience initiating discussions and advising various action plans and outcomes with government and tax administration officials and fellow information security professionals.
  • Professional experience working with or within a tax administration would be highly advantageous, e.g. in a role such as information security officer, IT security consultant, or IT security architect would be an advantage but is not essential.


  • Fluency in one of the two OECD official languages (English and French) and knowledge of the other, with a commitment to reach a good working level.
  • Working knowledge of French would be highly advantageous.




We do our best to provide you the most accurate info, but closing dates may be wrong on our site. Please check on the recruiting organization's page for the exact info. Candidates are responsible for complying with deadlines and are encouraged to submit applications well ahead.

Recent Post