Job Description
As an Information Security Consultant, you will be the key figure in ensuring the information security of our customers. Your role is crucial in safeguarding the integrity, confidentiality, and availability of their business data. You will lead the strategic development and implementation of information security policies and related procedures, and act as a bridge between the security team and senior management.
Responsibilities:
- Developing and implementing a robust information security management system.
- Coordinating the customer’s information security efforts.
- Identifying and managing security risks.
- Preparing incident response plans and coordinating responses to security incidents.
- Ensuring compliance with relevant laws and regulations.
A day in the life of a Information Security Consultant
Our customers are active in various sectors and have various needs, so... it depends.
You assess a new customer’s current situation, both in terms of controls and of governance. You identify the areas most at risk, recommend urgent fixes for critical gaps, and build a roadmap to bring the customer to a state where the information driving their business is adequately secured.
You recommend a security framework in line with the customer’s needs, and develop the corresponding ISMS. You coordinate the implementation of the ISMS with the current way of working of the customer to make the evolution to security as smooth as possible.
You perform a Security Officer role for the customer, ensuring the continuous improvement of their ISMS, assisting the customer’s security staff with your expertise, and acting as a sounding board for the customer’s own CISO or other security responsible.
When a customer experiences an incident, you coordinate the response efforts, and act as a communication bridge between the spotit engineers working on the incident and the customer’s management.
If protection of personal data is also your thing, you act as the customer’s privacy responsible or as their DPO, and manage the customer’s responsibilities under GDPR, taking care of policies, notices, agreements and registers. You respond to queries from the customers and from their data subjects and assist them in handling any breaches.
You remain up-to-date on frameworks, legislation, technologies, but also on the current landscape in terms of emerging trends and vulnerabilities.
Curious to learn more about the importance of a CISO? Read our blog about risk resilience and a CISOs responsibilities.
Requirements:
- Experience: at least 5 years in a similar Information Security role, such as Security Consultant, Security Architect, (C)ISO…
- Knowledge: extensive knowledge of information security practices and technologies.
- Languages: fluent in Dutch and English (spoken and written) .
- Certifications: CISSP, CISM, CIPP-E or similar are a strong plus.
- Frameworks:kKnowledge of ISO 27001 and NIS2 are a must, experience with them is a plus. GDPR is a great extra!
- Strong communication skills.
- Understanding the customer’s business, interfacing at ExCo & Board level.
- High level of integrity.
"From building policies to responding to threats, my job is to stay one step ahead – because in cybersecurity, being proactive is the best defence." - Ludovic, CISO
Offer:
- A challenging role in a dynamic environment where your contribution has a direct impact on the digital security of our clients.
- Competitive salary with a comprehensive benefits package.
- Opportunities for professional development to deepen your expertise and advance your career.
- An innovative workplace that values a good work-life balance, with regular team activities.
- A close-knit team of like-minded professionals who support each other.