Cyber Security Specialist

Our client a renowned Insurance provider across Europe is looking for a Cyber Security Risk Consultant.

As a Cybersecurity Risk Analyst, you will be responsible for identifying, assessing, and mitigating risks stemming from missing or ineffective security controls within critical applications and infrastructure components. This role requires deep technical knowledge of application and system architecture, strong risk management acumen, and the ability to collaborate effectively with IT system owners, architects, and security engineering teams to design and implement appropriate mitigation strategies.

Responsibilities :

• Security controls review and Risk assessment of applications and IT infrastructure elements in scope of the project
• Perform in-depth risk assessments focused on missing, weak, or outdated security controls in application stacks, operating systems, databases, cloud services, and network infrastructure.
• Translate technical vulnerabilities and control gaps into meaningful risk statements aligned with organizational risk appetite and impact models.
• Collaborate with IT owners and engineering teams to propose and validate mitigation strategies tailored to the specific technical and business context.
• Support periodic re-assessments of previously identified risks and control gaps to ensure timely remediation or documented exception handling. Regular follow-up on open ICT risks with IT PMs, business owners, IT owners and engineers.

Requirements :

• Minimum of 6 years of experience in IT topics covering both Risk Management and IT Security in technical cybersecurity risk assessment, vulnerability management, or secure architecture review
• Ability to understand technical discussions and ability to deep dive in any technical topic if necessary
• Ability to explain complex IT issues and ICT Risks linked to them on simple way
• Strong technical understanding of modern application architectures, CI/CD pipelines, cloud-native platforms (e.g., AWS, Azure), and system hardening techniques.
• Familiarity with common security control frameworks (NIST CSF, ISO 27001, CIS Benchmarks) and the ability to map control deficiencies to business risk.
• Solid grasp of IT operations, change management, and system ownership responsibilities in large enterprise environments
• University degree in computer science or security or equivalent experience.
• Self-learner

For further information please reach out to :

[email protected]

+32 (2) 342 052 7