Security Risk Manager

Title: Senior Digital Risk Officer & Security Architect

Preferred start date: 21/05/2026

Preferred end date: 21/05/2027

Location: Brussels 50% onsite

As a Digital Security & Risk Officer, you translate the validated guidelines from the CISO & DPO into concrete security architectures.

Candidates must be able to bridge the gap between theory and practice; excellent communication skills are therefore a MUST. The Senior Digital Risk Officer & Security Architect acts as the “risk & security” glue between the various stakeholders.

Scope of the Assignment

• Monitor and manage digital risks within the landscape, in close collaboration with 20+ risk owners
• Follow up on the implementation of validated control measures
• Strong team player; ability to collaborate within a large digital ecosystem (experience in companies with more than 200 ICT professionals is a plus)
• Ability to work independently
• Strong communication skills
• Possess a solid professional network to consult on security challenges when needed

Proven experience as a risk manager in complex digital environments

• Must have – 5 years – Senior level

Proven experience in the creation, management, and handling of cybersecurity risks for a NIS2 essential entity

• Must have – Yes

Proven experience in a similar business context (number of users > 5000)

• Must have – Yes

Proven experience with IT, IoT, Cloud & OT security

• Must have – 5 years – Senior level

Proven experience with risk management (e.g., application of ISO/IEC 27005)

• Must have – Yes

Candidate must demonstrate strong communication skills during the interview to manage digital risks with stakeholders

• Must have – Yes

Knowledge of ISO27001 & ISO27002 security concepts, demonstrated through relevant cybersecurity certificates (CISM/CISSP/...)

• Must have

Knowledge of NIS2 & GDPR legislation and experience applying it in digital environments

• Must have – Yes

Language requirement: Dutch at European CEFR level C2

• Must have – Yes

Additional (Preferred) Requirements

Experience in protecting information (processing, transport, storage) in on-prem and (Azure) cloud environments, apps, web applications, etc.

• Should have – Yes

Proven knowledge and experience with ITIL

• Should have – Yes

Knowledge of secure software development methods and SDLC

• Should have – Yes

Knowledge of an artificial intelligence management framework (e.g., ISO42001), demonstrated through AI training history

• Should have – Yes

Experience with procurement processes in accordance with public procurement legislation

• Nice to have – Yes