cover image
Toreon

Toreon

www.toreon.com

1 Job

67 Employees

About the Company

At Toreon, we believe that security is vital for people to live and work confidently, with trust in our digital society. We are information security consultants. We help you leverage your information technology to safely unlock your information and achieve your organization's goals. Toreon is an independent partner you can rely on as trusted advisor. We help you to make informed decisions about information security.

Listed Jobs

Company background Company brand
Company Name
Toreon
Job Title
Chief Information Security Officer
Job Description
**Job Title:** Chief Information Security Officer (CISO) **Role Summary:** Lead the development and execution of an organization-wide Information Security Management System (ISMS) to elevate security maturity, achieve ISO27001/2/12 certification and align security initiatives with business objectives. Act as trusted advisor to clients and internal stakeholders, translating risk assessments into actionable roadmaps and policies. **Expactations:** - Deliver a comprehensive security roadmap within 12 months. - Achieve ISO27001/2/12 certification for client environments. - Maintain continuous improvement of security posture through governance, risk management, and compliance. **Key Responsibilities:** - Conduct security environment assessment and risk identification using ISO27005, ISO31000, COSO frameworks. - Develop and implement risk treatment plans and security strategies. - Design, implement and maintain the ISMS, policies, procedures and controls. - Guide clients through security audits and certification processes. - Provide executive-level security briefings and advisory to project managers, IT directors and client management. - Manage and mentor a multidisciplinary GRC and privacy team. - Keep abreast of emerging threats, technologies and regulatory changes; recommend proactive measures. **Required Skills:** - 5+ years cybersecurity experience in consulting or enterprise role. - Strong knowledge of ISO27001/2/12, NIST, CIS Controls, CyberFundamentals. - Proficient in risk management methodologies (ISO27005, ISO31000, COSO). - Practical understanding of Identity & Access Management, Vulnerability & Patch Management, Cloud security, SDLC security, Network security, Cryptography, PKI. - Project management skills; balance business objectives with security best practices. - Excellent communication, persuasion, and stakeholder management. - Fluency in English; Dutch required; French an advantage. **Required Education & Certifications:** - Bachelor’s or Master’s degree in IT, Economics, Law or related field (preferred). - Professional certifications: CISM, CISSP, CISA, CGEIT, DPO, ISO27k Lead Implementor/Auditor, or equivalent technical certifications.
Flemish region, Belgium
Hybrid
Senior
24-11-2025