Job Specifications
Senior Information Security Officer
Are you passionate about #AI or #cybersecurity? You love working with high profile teams with a sure taste for challenge and variety? You dream to join a fast-growing company with start-up mentality? Eager to learn continuously? Join us !
The mission of the Security Management and CSIRT teams is to protect our client , its customers, its business, its operations and reputation against external and internal threats. You will be fascinated by a highly dynamic environment, the strong collaboration and some deep technical aspects.
Within the Security Management team, we are looking for a Senior Information Security Officer to reinforce the team.
Your Role:
• Provide CISO-as-a-Service (CISOaaS) to entities, to assist with the overall reinforcement of their security posture.
• Help them in maintaining their ISO27001 certification or in preparing for an ISO 27001 certification and achieving NIS2 compliance.
• Perform cybersecurity assessments (NIS2, ISO27001, security maturity, risk) to identify gaps in the security program, define a baseline, As-Is state, to-be desired state and establish a roadmap.
• Create information security policies, procedures, guidelines and processes.
• Evaluate the existing architecture for threats and risk and make recommendations.
• Advise on cybersecurity risk and governance program.
• Assist in reaching or maintaining compliance to information security legal, contractual, or internal requirements.
• Assist IT teams with the implementation of projects acting as an interim security officer, execute risk assessments.
• Define, test crisis management, business continuity, or disaster recovery planning.
• Set up reporting activities related to the status of information security.
• Organize security awareness programs.
• Respond to customer due diligence requests for the products that the client offers to its customers by completing security questionnaires within established SLA.
Your Profile:
• Bachelor’s Bachelor or a Master’s degree in Cyber Security or Computer Science.
• 5+ years of experience in a combination of audit, risk management, information security and IT jobs.
• Knowledge of information security management frameworks, such as ISO 27000 series, NIST, ISF, CIS and NIS2 Directive.
• Experience in multiple security domains (Risk Management, Governance, Network and Application security, Vulnerability Management, IAM …) and experience with various security technologies and tools.
• Experience with ISMS ISO 27001 implementations, conducting or supporting audits, risk assessments.
• Certified ISO 27001 Lead Auditor/Implementer and other certifications, such as ISO 9001 LA/LI, CISSP, CISM or willingness to get certified.
• Experience in reviewing cloud security measures (Azure, AWS).
• Previous experience and knowledge in telco domain is a plus.
• Excellent written and verbal communication skills and high level of personal integrity.
• Proven project management skills.
• Can operate with a great deal of autonomy, results-oriented and able to deliver within preset deadlines.
• Based in Belgium for the last 5 years , hybrid working 2 days/week at the location of the customer.
• Long-term mission.
About the Company
We’re Harvey Nash, and we build amazing technology and digital teams. From senior appointments through to recruitment and project solutions, we are experts in the tech sector.
Established in 1988, we have helped over half the world’s leading companies recruit, retain, source and manage the highly skilled tech talent they need to succeed in an increasingly competitive, global and technology driven world.
With over 3.300 staff in more than 49 offices across Europe, Asia-Pacific and the U.S and Canada, we have built a rep...
Know more