Cyber Security Consultant

MUST:

• Fluent in Dutch and English, French is a plus.

• Based in Belgium, hybrid working 2 days/week at the location of the customer.

• Long-term mission.

Senior Information Security Officer

Are you passionate about #AI or #cybersecurity? You love working with high profile teams with a sure taste for challenge and variety? You dream to join a fast-growing company with start-up mentality? Eager to learn continuously? Join Proximus Ada!

Within this Proximus’ newly created centre of excellence for AI and Cybersecurity, the mission of the Security Management and CSIRT teams is to protect Proximus, its customers, its business, its operations and reputation against external and internal threats. You will be fascinated by a highly dynamic environment, the strong collaboration and some deep technical aspects.

Within the Security Management team, we are looking for a Senior Information Security Officer to reinforce the team.

Your Role:

• Provide CISO-as-a-Service (CISOaaS) to entities of the Proximus Group to assist with the overall reinforcement of their security posture.

• Help them in maintaining their ISO27001 certification or in preparing for an ISO 27001 certification and achieving NIS2 compliance.

• Perform cybersecurity assessments (NIS2, ISO27001, security maturity, risk) to identify gaps in the security program, define a baseline, As-Is state, to-be desired state and establish a roadmap.

• Create information security policies, procedures, guidelines and processes.

• Evaluate the existing architecture for threats and risk and make recommendations.

• Advise on cybersecurity risk and governance program.

• Assist in reaching or maintaining compliance to information security legal, contractual, or internal requirements.

• Assist IT teams with the implementation of projects acting as an interim security officer, execute risk assessments.

• Define, test crisis management, business continuity, or disaster recovery planning.

• Set up reporting activities related to the status of information security.

• Organize security awareness programs.

• Respond to customer due diligence requests for the products that Proximus offers to its customers by completing security questionnaires within established SLA.

Your Profile:

• Bachelor’s Bachelor or a Master’s degree in Cyber Security or Computer Science.

• 5+ years of experience in a combination of audit, risk management, information security and IT jobs.

• Knowledge of information security management frameworks, such as ISO 27000 series, NIST, ISF, CIS and NIS2 Directive.

• Experience in multiple security domains (Risk Management, Governance, Network and Application security, Vulnerability Management, IAM …) and experience with various security technologies and tools.

• Experience with ISMS ISO 27001 implementations, conducting or supporting audits, risk assessments.

• Certified ISO 27001 Lead Auditor/Implementer and other certifications, such as ISO 9001 LA/LI, CISSP, CISM or willingness to get certified.

• Experience in reviewing cloud security measures (Azure, AWS).

• Previous experience and knowledge in telco domain is a plus.

• Excellent written and verbal communication skills and high level of personal integrity.

• Proven project management skills.

• Can operate with a great deal of autonomy, results-oriented and able to deliver within preset deadlines.

QUESTIONS TO BE ANSWERED UPON SUBMISSION

• Years of experience in ISO27001 implementation
• Experience in Nis2
• Experience in CISO/CISOaaS roles
• Certified ISO27001 implementor or auditor (not mandatory)
• Years of experience in GRC and Cybersecurity