Senior Cybersecurity Consultant – Security Governance & Architecture

Location: Luxembourg Onsite

Contract: Long-term freelance/consulting engagement

Overview

Our client in Luxembourg is looking for a Senior Cybersecurity Consultant to support Security Governance, Risk & Compliance activities and lead strategic security initiatives. You will contribute to defining and implementing security policies, standards and architecture, while guiding both management and technical teams.

Key Responsibilities

• Develop and maintain security policies, standards, baselines, and guidelines.
• Lead cybersecurity / ISMS implementation and security-related projects.
• Perform security and risk assessments (e.g. ISO 27005, EBIOS).
• Define security architecture and propose security countermeasures.
• Support incident response activities and perform dedicated technical security analysis.
• Secure cloud environments (including containerisation).
• Oversee application security (secure coding practices, WAF).
• Drive data security: encryption, PKI, DLP, digital signature frameworks.
• Design and deliver cybersecurity awareness programs to internal users.
• Support compliance with standards and regulatory cybersecurity frameworks.

Must-Have Experience

• Master’s degree in IT or related field.
• 10+ years experience in cybersecurity with a strong focus on policy, standards, governance and architecture.
• 5+ years leading teams or projects in security.
• Strong expertise in Security Governance–Risk–Compliance (GRC).
• Experience implementing ISMS (ISO 27001/27005).
• Solid understanding of network and security architecture: firewalls, proxies, PKI, IDS/IPS, remote access, and authentication.
• Exposure to cybersecurity frameworks: ISO/IEC 270xx, NIST 800, ANSSI, BSI, ISF.
• Experience in Identity & Access Management (IAM).
• Ability to coach, mentor and present to senior stakeholders.
• Minimum one cybersecurity certification (e.g. CISSP, CISM, ISO 27001 LI/LA).