Senior Offensive Security Manager

As Senior Offensive Cybersecurity Lead, you are first and foremost a builder of people and capability. Your mission is to create, grow, and mentor a high‑performing offensive security team in Belgium, while developing a modern, credible, and scalable offensive security service offering.

You act as a senior mentor and trusted reference point within the cybersecurity organization - setting technical direction, coaching consultants at all levels, and fostering a culture of learning, craftsmanship, inclusion, and ethical offensive security. While maintaining strong hands‑on credibility, your impact is measured by the strength and confidence of the team you enable, not by individual execution alone.

1) Build, grow & inspire the Offensive Security Team covering:

• Penetration testing (infrastructure, cloud, identity)
• Web application and API security testing
• AI / ML security testing
• Red teaming and adversary emulation

2) Act as a mentor and coach for team members:

• Provide technical guidance and structured feedback
• Help team members develop depth, specialization, and confidence
• Define and maintain skills frameworks and progression paths

3) Establish Technical Direction & Quality Standards:

• Set the technical vision for offensive security in Belgium, ensuring consistency, fairness, and quality across all engagements
• Define red team operations and purple team collaboration
• Act as a review and quality gate for complex engagements and deliverables
• Ensure safe, ethical, inclusive, and controlled testing practices across all domains

4) Develop and Mature the Offensive Security Service Offering:

• Own the evolution of the service portfolio from foundational penetration testing to advanced, threat‑led and red team engagements
• Secure strong integration of web and AI attack surfaces
• Develop scalable methodologies, templates, and reusable assets
• Ensure services are realistic, defensible, and aligned with modern client environments and expectations

5) Support other cyber teams:

• Translate offensive findings into meaningful defensive improvements
• Help non‑offensive colleagues understand attacker thinking
• Contribute to internal capability building beyond your direct team (training sessions, reviews, coaching)

6) Client & Stakeholder Leadership:

• Support key clients as a trusted senior expert
• Guide scoping, expectations, and risk discussions - while empowering your team to lead delivery
• Participate in proposals and client discussions where senior credibility and mentorship are required

What do you need:

8–12+ years in offensive security, with strong exposure to:

• Penetration testing and red teaming
• Web application and API security
• Modern cloud and identity environments

Technical Background and solid understanding of:

• Web application architectures and common vulnerability classes
• API abuse patterns and authentication flows
• AI/ML security risks (prompt injection, data leakage, misuse scenarios)
• Shaping how AI is embedded into your own projects; take ownership of data governance and ensure AI initiatives align with business goals and our standards.

Other qualities:

• Ability to guide and review complex technical work
• Pragmatic, real‑world attacker mindset with an emphasis on safe, ethical, and inclusive practice
• Proven experience building, leading, or mentoring teams
• A natural inclination toward coaching, knowledge sharing, and supporting the growth of others
• Strong communication skills across both technical and non‑technical audiences.
• Fluency in Dutch and English

What can you expect:

• An attractive remuneration package with a great number of extra-legal benefits (premium electric company car + charging card, net daily and monthly allowances, bonus, Apple/Android personal device and many other benefits tailored through our cafeteria plan).
• Flexible work arrangements to ensure a healthy work-life balance (picking up kids from school, doctor’s appointment, working from home,…) and the possibility to work from anywhere 20 days per year.
• Comprehensive insurance package including group insurance with full KPMG contributions, hospitalization insurance and optional outpatient options (dental & eye care, medical consultations and registered medication).
• Career development opportunities combined with trainings based on your personal goals and aspirations.
• An inclusive, international culture where personal growth, mutual trust and lifelong learning is fostered.
• A buddy and performance manager to support and guide you throughout your career at KPMG.
• Great team building activities and sport & wellbeing events (Brussels Marathon, Antwerp 10 Miles, 1000 kilometers for KOTK, river clean-ups, plant a tree and many more…) through our Together@KPMG & KPMG Foundation programs.