Industries Your challenges Services About us Content & events PwC Careers PwC's Academy PwC Regulated Solutions

Industries

Alternatives Asset and Wealth Management Banking & Capital Markets Government & Public services Industry & Services Insurance

Industries

Alternatives

Debt funds Hedge Funds Infrastructure Private Equity Real Estate Venture Capital

Industries

Asset and Wealth Management

Industries

Banking & Capital Markets

Asset Service Providers Capital Markets Professionals of the Financial Sector Securitisation

Industries

Government & Public services

Defence and security Digital government EU Institutions Government and municipalities Healthcare and Life Science Industries Innovation & SME financing Technology

Industries

Industry & Services

Automotive Manufacturing Retail & Consumer Space Technology Technology, Media & Telecommunications Transport & Logistics

Industries

Insurance

Featured

Luxembourg Fund Governance Survey 2024

Your challenges

Business Model Reinvention Cloud transformation Cybersecurity and Privacy Digital Operational Resilience Act (DORA) Finance Transformation Generative AI Sustainability and Climate Change Sustainable Finance

Your challenges

Business Model Reinvention

Your challenges

Cloud transformation

Your challenges

Cybersecurity and Privacy

Your challenges

Digital Operational Resilience Act (DORA)

Your challenges

Finance Transformation

Your challenges

Generative AI

Your challenges

Sustainability and Climate Change

Your challenges

Sustainable Finance

Featured

CEO Survey Report 2025 - Luxembourg Edition

Services

Advisory Audit & Assurance Services Tax, Accounting and Reporting Actuarial and Risk Modelling Services GenAI Business Center Managed Services AWM & ESG Research Centre Operational Risk Management PwC Alliances Luxembourg PwC Experience Center

Services

Advisory

Corporate Finance Financial Services Consulting Global Fund Distribution Industry and Public Sector Consulting People, Experience and Change Consulting PwC's Academy Regulatory, Risk & Compliance Strategy& Technology

Services

Audit & Assurance Services

Financial statement audits Risk Assurance Services Capital Markets - Raising capital in public markets Actuarial and Risk Modelling Services AML & Financial Crime Accounting advisory: Navigating IFRS complexity Internal Audit services

Services

Tax, Accounting and Reporting

Services

Actuarial and Risk Modelling Services

Services

GenAI Business Center

Services

Managed Services

Managed Services for Investment funds Managed Services for Alternatives Managed Services for Banking

Services

AWM & ESG Research Centre

Services

Operational Risk Management

Services

PwC Alliances Luxembourg

Services

PwC Experience Center

Featured

Benchmark your Global Fund Distribution

About us

Annual Review Country Leadership Diversity, Equity, Inclusion and Wellbeing Ethics and compliance Office PwC Alumni Transparency Report

About us

Annual Review

About us

Country Leadership

About us

Diversity, Equity, Inclusion and Wellbeing

About us

Ethics and compliance

Purpose and values PwC's Code of Conduct PwC Ethics Helpline Human Rights Policy Tax Code of conduct Third Party Code of Conduct Data Use Principles

About us

Office

About us

PwC Alumni

About us

Transparency Report

Featured

PwC Luxembourg Annual Review 2024

Content & events

Latest News Manage your PwC Luxembourg Preferences Podcasts Press Room Publications THE BLOG Upcoming events & sponsorships Videos

Content & events

CISO in the Spotlight

Copy link Link copied to clipboard

What's the profile of a Chief Information Security Officer (CISO) in Luxembourg? Where does he stand in the organigram? What challenges and opportunities has he?

The "CISO in the Spotlight" survey, conducted by CPSI and PwC Luxembourg aims at shedding light on the CISO role in Luxembourg by looking at it from several perspectives.
A typical CISO has a highly qualified profile. He either has worked for ten years in security or 20 years in all sectors.
The survey shows a correlation between the size of the company and governance at CISO level. While in small to medium companies, 74% of CISOs report directly to the Board, in large ones only 50% of CISOs do so.
CISOs usually manage security through functional responsibilities. Very technical fields, such as network security, tend to be more outsourced than organisation and compliance matters. The use of partial outsourcing is preferred to total outsourcing.
The most important success factor in a CISO's job is the budget. 73% of our respondents said they're pleased with the budget available. As far as constraints are concerned, 69% of them mentioned the complexity of IT systems.
The survey was carried out on a representative panel of CISOs working in companies of all sizes across numerous business sectors.

Do not hesitate to contact us for any further details on this survey.

Key results of the 2016 survey conducted by CPSI and PwC Luxembourg

Out of the shadows: CISO in the Spotlight!

Contacts

Vincent Villers, Cybersecurity Leader, PwC Luxembourg, vincent.villers@lu.pwc.com
Ludovic Raymond, Cybersecurity Director, PwC Luxembourg, ludovic.raymond@lu.pwc.com
Marie Bianchini, Marketing, PwC Luxembourg, marie.bianchini@lu.pwc.com
Rodolphe Mans, President, CPSI, rodolphe.mans@bil.com

We welcome your comments

Your request / feedback has been routed to the appropriate person. Should you need to reference this in the future we have assigned it the reference number "refID".

Thank you for your comments / suggestions.

Required fields are marked with an asterisk(*)

Please correct the errors and send your information again.

First and last name*

Organisation*

Job title*

Email*

Please select the cybersecurity service(s) you are interested in and would like to discuss further

BCMS assessment

Breach Indicator Assessment

CISO function implementation

Crisis management team exercise & training

CSIRT (Computer Security Incident Response Team)

Cyber assurance/attestation

Cyber Emergency

Cybersecurity transformation

Forensics

Incident Management

Information Security Management System assessment & implementation

Information Security Risk Management

Network and Information Systems (NIS) Directive

Penetration tests

Red & Purple team

Security Architecture

Security Awareness

SWIFT Customer Security Program

Third party security assessment

Vulnerability management

Please select the privacy service(s) you are interested in and would like to discuss further:

Data Protection Officer as a Service, or support to your DPO

Privacy Internal Audit

Preparation for Europrivacy or CARPA certification

Gap assessment & operational readiness assessment

RoPA completion/ update

DPIA completion/ assistance

Operational testing of procedures

Data breaches/ DSARs simulations (stress testing)

Training (incl. e-Learning)

Retention period enforcement

Data discovery & classification

Your request

Please click here*

Tick this box to verify you are not a robot

By submitting your email address, you acknowledge that you have read the Privacy Statement and that you consent to our processing data in accordance with the Privacy Statement (including international transfers). If you change your mind at any time about wishing to receive the information from us, you can send us an email message using the Contact Us page.

Hide

Content & events Careers Contact us Manage your PwC Luxembourg Preferences

© 2018 - 2025 PwC. All rights reserved. PwC refers to the PwC network and/or one or more of its member firms, each of which is a separate legal entity. Please see www.pwc.com/structure for further details.

General Terms & Conditions
Privacy Statement
Cookies info
Site Provider
Site Map