Cybersecurity Program Manager

What you will do

As a cybersecurity program manager, you will support the 1st line of defence throughout our organization in implementing robust security measures. You play a pivotal role in designing, implementing & managing security controls in line with imec’s information security control framework.

Key Responsibilities Of This Role Include

• Security roadmap & strategic alignment:
• Assist departments in developing and executing security roadmaps in line with imec’s corporate information security strategy
• Engage with senior business stakeholders to align security initiatives with business objectives and obtain buy-in for security programs.
• Identify security gaps and define action plans to strengthen defences across ICT/OT environments.
• Provide expert guidance on integrating security into business processes, ensuring a risk-based approach to cybersecurity.
• Security program implementation & governance:
• Oversee the development, implementation, and maintenance of security policies, standards, and controls for secure configurations across on-premises and cloud-based ICT/OT platforms.
• Continuously assess the effectiveness of security controls and drive improvements to enhance the overall security posture.
• Conduct security reviews and assessments to ensure compliance with internal frameworks and external regulations (e.g., ISO 27001, NIST, IEC 62443).
• Business engagement & stakeholder management:
• Act as a liaison between security and business units, ensuring security strategies align with business needs.
• Work closely with senior leadership and key stakeholders to advocate for security priorities and ensure security is embedded in departmental decision-making.
• Develop and present security insights, risk reports, and business cases to executives to facilitate informed decision-making.
• Emerging threats & continuous improvement:
• Stay ahead of emerging cyber threats, trends, and technologies, proactively recommending enhancements to imec’s security architecture.
• Support the adoption of advanced security solutions, including zero trust architecture, endpoint protection, network segmentation, and cloud security controls.

What we do for you

We offer you the opportunity to join one of the world’s premier research centers in nanotechnology at its headquarters in Leuven, Belgium. With your talent, passion and expertise, you’ll become part of a team that makes the impossible possible. Together, we shape the technology that will determine the society of tomorrow.

We are committed to being an inclusive employer and proud of our open, multicultural, and informal working environment with ample possibilities to take initiative and show responsibility. We commit to supporting and guiding you in this process; not only with words but also with tangible actions. Through imec.academy, 'our corporate university', we actively invest in your development to further your technical and personal growth.

We are aware that your valuable contribution makes imec a top player in its field. Your energy and commitment are therefore appreciated by means of a market appropriate salary with many fringe benefits.

Who You Are

We are looking for a highly motivated person with:

• 5 years or more experience in cyber security, either in a similar role or as a consultant
• knowledge of international standards and frameworks with regards to information and cyber security such as the ISO 27000 series and NIST Cybersecurity Framework.
• knowledge of security processes, technologies and architecture
• proven experience in program/project management methodologies and best practices
• the capability to translate information security risks and requirements in business language.
• a pro-active attitude & the ability to think outside of the box
• works in an organised, structural manner
• can do attitude, get’s things done
• excellent communication skills with diverse audiences
• strong critical thinking and analytical skills
• demonstrated ability to identify risks associated with business processes, operations, information security programs and technology projects
  
  

IMEC and its affiliates will not accept unsolicited resumes from any source other than directly from a candidate. IMEC will consider unsolicited referrals and/or resumes submitted by vendors such as search firms, staffing agencies, professional recruiters, fee-based referral services and recruiting agencies (hereafter “Agency”) to have been referred by the Agency free of charge. IMEC will not pay a fee to any Agency that does not have a prior written agreement with IMEC, validated by its HR department, in place regarding a specific job opening and allowing to submit resumes.