Cyber Strategy & Risk Consultant

Roles & Responsibilities:

• You analyze complex enterprise information security programs and infrastructure in both the public and private sectors.
• You assist with assessments of clients’ IT and security processes, risks, controls, and compliance against leading practices, industry standards, and/or client frameworks. You assess capability and maturity, identify gaps in design and execution, and communicate issues and recommendations to engagement leads and client senior management.
• You work with client senior management to develop a cybersecurity improvement strategy and roadmap to enhance maturity and reduce risk.
• You work with client senior management to assess, design, and implement sustainable solutions, including GRC tools, operating processes, and people models, to address key and evolving risks.
• You serve as the interface between client executives and hands-on technology practitioners, driving meaningful strategic change in the areas of information protection, data security and privacy, security operations, and business continuity.
• You articulate the business risks of technical vulnerabilities and communicate findings to client personnel.
• You assist clients in developing cybersecurity procedures and processes that align with leading practices.
• You analyze cybersecurity incident response capabilities, playbooks, and documentation, working with client staff to implement sustainable improvements. You facilitate tabletop exercises and collaborate with client staff to develop a remediation and improvement plan.

#Advisory

#Technology

#DigitalRiskManagement

#Cyber

#CyberStrategy

#DigitalRisk

Skills & Qualifications:

• You have a master's degree.
• You have a minimum of three years of experience in the field of cybersecurity and information risk management.
• You have working knowledge of leading frameworks such as ISO 27001, NIST Cybersecurity Framework (CSF), NIST 800-53, CIS, and the Cybersecurity Maturity Model.
• You have experience in writing policies, procedures, and controls in one or more standards/frameworks.
• You are open and honest about your successes and failures, recognizing that learning is an important part of our job.
• You have an entrepreneurial mindset and enjoy working on projects end-to-end.
• You are fluent in English and either Dutch or French.
• Cybersecurity-related certifications (e.g., CISSP, CEH, CISM, CISA, GIAC, GSEC) are a plus.
• ISO-certified lead auditing experience is preferred.
• You have excellent written and verbal communication, facilitation, leadership, and presentation skills.

As a certified Top Employer we offer:

• An international corporate culture in which personal growth, mutual trust and lifelong learning are being fostered.
• A competitive and attractive compensation package and a great number of extra-legal advantages (Company car + fuel card, IPhone/IPad, group & hospitalization insurance, Allowances,…) which are customizable with our Reflex@KPMG plan.
• Career development opportunities combined with trainings based on your personal needs and ambitions. Flexible, hybrid work arrangements to enable working from wherever you are.
• A team of passionate colleagues to reach higher goals and support eachother.
• A buddy and performance manager to support and assist you through your first months at KPMG.
• Great teambuilding, sport & wellbeing initiatives through our Together@KPMG program.
• An inclusive workspace that encourages diversity and pursues mutual respect for each other’s beliefs and backgrounds.