IT & Cyber Risk Management Specialist
Are you an expert in IT and Cybersecurity Risk Management? We're looking for a talented individual to join our Governance, Risk, and Compliance (GRC) team, supporting both IT and Business Units in identifying and addressing operational risks. In this role, you'll play a key part in shaping and executing risk management strategies, with a strong focus on information security and vendor risk oversight.
Where : Brussels, Belgium
How : Hybrid, 50% remote
Key Responsibilities:
- Conduct comprehensive IT and cybersecurity risk assessments across a range of business applications, projects, and third-party providers.
- Evaluate and monitor third-party IT services to ensure compliance with contractual obligations, particularly around information security.
- Coordinate and execute IT and cybersecurity audits with a focus on identifying vulnerabilities and mitigating risks.
- Prepare concise risk reports and one-pagers for executive stakeholders, outlining critical insights and actionable recommendations.
- Design and implement processes for end-to-end IT and security management, with a focus on third-party relationships.
- Provide expert consulting to internal teams (IT & Business) on cyber risk mitigation, enhancing risk management maturity, and delivering impactful reporting and follow-ups.
- Serve as the primary point of contact for IT and Cyber risk management services, building strong relationships with stakeholders and ensuring seamless communication.
- Contribute to refining risk management tools, methodologies, and processes related to third-party oversight.
- Draft and review IT security clauses in supplier contracts to safeguard critical services.
Requirements:
- Fluency in French and English (mandatory) ; Dutch is an excellent bonus.
- Bachelor's/Master's degree or equivalent experience in IT, cybersecurity, or related fields.
- Professional certifications (CISSP, CISM, ISO27001, etc.) are a plus.
- Minimum of 5 years of experience in information security, process design, risk management, and business analysis.
- Strong technical background with expertise in cloud services (SaaS, AWS) and software development security best practices.
- Experience in third-party risk assessments and managing cybersecurity within large enterprises, ideally in financial services.
- Strong knowledge of key cybersecurity frameworks (ISO27001, SOC, NIST) and proficiency in MS Office.
Soft Skills:
- Proactive, self-starter with a team-oriented mindset.
- Excellent communication and presentation skills, with the ability to synthesize complex information into clear, actionable insights.
- Strong problem-solving abilities and keen attention to detail.
- Comfortable working in a fast-paced, dynamic, and multicultural environment.
- Ability to mentor and support colleagues in risk management initiatives.
Hybrid Working: Enjoy a flexible work arrangement with 50% onsite and 50% remote work options
Apply Now to Nelson.Vandescotte@oliverjames.com