Cybersecurity Expert- NIS2 Compliance

Contenuto del lavoro

Cybersecurity Expert – NIS2 Compliance Projects (Non-CISO Role)

Start: ASAP

Initial Contract: Until year-end (extension possible)

Work Mode: 50% remote

Languages: Proficiency in French, Dutch, and English (written and spoken)

Mission

Support a large enterprise client in translating strategic cybersecurity objectives into practical, high-impact solutions. The role involves advancing security practices, processes, and tools to safeguard digital and physical assets, ensure regulatory compliance (especially NIS2), and strengthen organizational resilience.

Key Responsibilities

1. Information Security Management

• Define protection objectives and performance indicators aligned with the cybersecurity strategy.
• Maintain and improve the Information Security Management System (ISMS) according to international standards.
• Monitor cybersecurity dashboards and reporting tools; drive corrective actions where needed.
• Sort and triage internal security communications and follow up on audit recommendations.

2. Information Risk Management

• Implement a structured risk management framework, including risk analysis, treatment, and monitoring processes.
• Integrate risk workflows into IT and business processes.
• Perform risk assessments for ongoing and new projects, track mitigation activities, and maintain a risk register.

3. Cybersecurity Solutions & Services

• Define requirements for security solutions and services.
• Oversee third-party cybersecurity service delivery.
• Operate and evolve Cybersecurity Incident Response Team (CSIRT) activities.
• Develop and govern Identity & Access Management (IAM) strategies.

4. Governance, Policies & Awareness

• Create and maintain information security policies, standards, and guidelines.
• Lead company-wide awareness programs to promote understanding of security and privacy risks.
• Collaborate with stakeholders to ensure policy adoption and incident response effectiveness.

5. Project Coordination & Management

• Lead security-related projects, managing resources, timelines, and budgets.
• Align activities with adjacent departments (e.g., Risk, Compliance, Data Protection).
• Coordinate closely with IT Project Management Office (PMO).

6. Reporting

• Deliver quarterly reports to senior leadership covering cybersecurity operations.
• Prepare project updates (status, budget, resource usage) and performance metrics.
• Track and report on findings from security monitoring tools.

7. IT Compliance

• Establish IT compliance frameworks based on regulatory and strategic requirements.
• Collaborate with data protection and risk teams on audit and compliance initiatives.
• Conduct audits and develop mitigation strategies for identified weaknesses.

8. Continuous Knowledge Development

• Stay current with security technologies, regulatory changes, and threat landscapes.
• Participate in trainings, seminars, and professional development activities.

Ideal Profile

Expertise Areas:

• Information Security & Risk Management
• Security Governance & Policy
• Cybersecurity Operations (e.g., CSIRT, IAM)
• IT Compliance and Audit

Qualifications:

• Master’s degree or equivalent experience
• 3–5 years in a relevant cybersecurity role
• Familiarity with ISO 2700x standards
• Knowledge of NIS2, GDPR, and other applicable regulations
• Security certifications (CISSP, CISM, CISA preferred)
• Experience managing complex, cross-functional projects

Skills:

• Strong analytical and problem-solving capabilities
• Ability to communicate with both technical and non-technical stakeholders
• Capable of developing frameworks, policies, and training content
• Comfortable presenting to senior leadership and adapting to changing priorities

Work Environment & Communication

Internal Collaboration:

• Regular interaction with cybersecurity peers, IT departments, and project teams
• Coordination with internal risk, compliance, HR, and communications units

External Interfaces:

• Engagement with third-party vendors, external auditors, and industry counterparts
• Participation in ongoing monitoring, alignment, and review of service performance