Security Analyst

Job Title: Security Analyst/ Technical Writer

Contract duration: 03/05/2025 – 31/12/2025

Work Location: 1000 Brussels

Remote Status: Hybrid- Full time

Language: French OR Dutch and English

The Assignment

Overview:

The ICT department is seeking an IT Security Analyst/Technical Writer as part of the formalization of its governance and IT security processes.

Context:

As a public institution, the Client must comply with obligations under the European NIS2 Directive, which has been translated into the CyFun (CyberFundamentals Framework) - Essential by the CCB.

The FSMA has outsourced significant operations to a certified external supplier, whose documentation must be integrated into the Client’s records.

Timeline: This assignment is expected to span over more than a year and may lead to the formalization of new needs.

Objectives of the Contract

Needs and Situational Analysis:

Assess requirements and current processes related to governance and IT security.

Gain insight into objectives in governance formalization.

Policy and Procedure Analysis:

Review available documentation from Client and suppliers (procedures, policies, and controls).

Documentation and Tool Familiarization:

Formalize processes and policies.

Learn and configure the chosen tool (e.g., CISO Assistant), ensuring alignment with needs.

Define foundational objects for configuration.

Deliverables and Gaps Identification:

Identify and create/supplement/consolidate required deliverables.

Fill gaps in documentation via interviews.

Ensure documentation standardization and alignment.

Process Consistency and Maintenance:

Identify necessary updates and integrate them into processes.

Ensure consistency across processes.

Training and Validation:

Train teams on tool usage and processes.

Test the validity and consistency of documentation with Client’s Internal Audit.

Execution Support

Team Support: Limited availability from a competent and reactive team (few hours weekly).

Supplier Support: Contact persons from key suppliers available to assist.

Tools and Resources: Necessary tools to be determined alongside the consultant.

Management Backing: Full support from ICT management and executives for this high-priority project.

Technical Competencies

Educational Background:

University degree or equivalent, with a technical focus on IT security and systems engineering.

Experience:

Several years of experience in similar assignments.

Framework Knowledge:

In-depth understanding of the CyFun framework (Essential).

Standards Knowledge:

Familiarity with ISO27001, ISO27002, ISO27004, and ISO27005 standards.

Writing Skills:

Ability to write quickly and fluently, with clear and precise communication tailored to the target audience.

Structured and synthetic writing proficiency.

Technical Collaboration:

Efficient in multidisciplinary collaboration.

Skilled with writing tools.