The Gaming1 group, with nearly 1,200 employees, including 250 at our headquarters in Liège, and with a turnover of 220 million euros in 2018, is the leading Belgian company for both landbased and online games of chance (casino games, sports betting services and poker). The group is striving to become a world leader in the regulated online gaming market by developing its own technology and through its omnichannel approach. In terms of its business in Belgium, the group owns the Grand Casino de Namur, Casino de Spa and more than 30 Circus gaming halls, as well as the Circus.be, 777.be and pokerstars.be websites. On an international level, the group owns 6 casinos in France, including one in Paris, and the Casino de Davos in Switzerland. Furthermore, through their partnership with leading national providers in the market, they operate more than 10 online gaming sites in Spain, Switzerland, Portugal, France, Serbia and Colombia and they are currently expanding into new markets.
Gaming 1's compliance department is a new department at the heart of a vibrant and rapidly expanding company that faces exciting challenges when it comes to regulatory and compliance matters. The department implements compliance regulations for Gaming1 and ensures these are respected.
Today, we are looking for an ISO27001/GDPR complicance officer in order to ensure Gaming1 complies with the European General Data Protection Regulation (GDPR) and to keep our ISO27001 certifications.
You will ensure all the provisions related to ISO27001 and the GDPR are followed and implemented. You will consult and understand the Information Security Management System (ISMS) restrictions and requirements.
You will ensure the ISMS is implemented throughout all the Gaming1 departments and check that the ISMS is used properly and monitored by the operational teams. You will monitor nonconformities and keep the ISMS risk records up to date.
You will plan, organise and monitor internal audits in accordance with standard ISO27001 as well as audits for the renewal of the ISO27001 certificate.
You will follow up audit reports: analyse nonconformities, dispatch to the teams responsible for ensuring compliance and monitor improvements.
You will be responsible for planning and organising ISO27001 and GDPR training within Gaming1.
Other responsibilities include:
- Being the point of contact for all questions related to ISMS and/or GDPR
- Keeping the personal data records up to date, either directly or in a coordinating and supervisory capacity
- Acting as an intermediary for the data protection officer
- Ensuring personal data is processed in the correct time frame and in accordance with the GDPR regulations