Senior Information Security Officer

Are you passionate about #AI or #cybersecurity? You love working with high profile teams with a sure taste for challenge and variety? You dream to join a fast-growing company with start-up mentality? Eager to learn continuously? Join us !

The mission of the Security Management and CSIRT teams is to protect our client , its customers, its business, its operations and reputation against external and internal threats. You will be fascinated by a highly dynamic environment, the strong collaboration and some deep technical aspects.

Within the Security Management team, we are looking for a Senior Information Security Officer to reinforce the team.

Your Role:

• Provide CISO-as-a-Service (CISOaaS) to entities, to assist with the overall reinforcement of their security posture.

• Help them in maintaining their ISO27001 certification or in preparing for an ISO 27001 certification and achieving NIS2 compliance.

• Perform cybersecurity assessments (NIS2, ISO27001, security maturity, risk) to identify gaps in the security program, define a baseline, As-Is state, to-be desired state and establish a roadmap.

• Create information security policies, procedures, guidelines and processes.

• Evaluate the existing architecture for threats and risk and make recommendations.

• Advise on cybersecurity risk and governance program.

• Assist in reaching or maintaining compliance to information security legal, contractual, or internal requirements.

• Assist IT teams with the implementation of projects acting as an interim security officer, execute risk assessments.

• Define, test crisis management, business continuity, or disaster recovery planning.

• Set up reporting activities related to the status of information security.

• Organize security awareness programs.

• Respond to customer due diligence requests for the products that the client offers to its customers by completing security questionnaires within established SLA.

Your Profile:

• Bachelor’s Bachelor or a Master’s degree in Cyber Security or Computer Science.

• 5+ years of experience in a combination of audit, risk management, information security and IT jobs.

• Knowledge of information security management frameworks, such as ISO 27000 series, NIST, ISF, CIS and NIS2 Directive.

• Experience in multiple security domains (Risk Management, Governance, Network and Application security, Vulnerability Management, IAM …) and experience with various security technologies and tools.

• Experience with ISMS ISO 27001 implementations, conducting or supporting audits, risk assessments.

• Certified ISO 27001 Lead Auditor/Implementer and other certifications, such as ISO 9001 LA/LI, CISSP, CISM or willingness to get certified.

• Experience in reviewing cloud security measures (Azure, AWS).

• Previous experience and knowledge in telco domain is a plus.

• Excellent written and verbal communication skills and high level of personal integrity.

• Proven project management skills.

• Can operate with a great deal of autonomy, results-oriented and able to deliver within preset deadlines.

• Based in Belgium for the last 5 years , hybrid working 2 days/week at the location of the customer.

• Long-term mission.