For one of our clients based in Brussels and active in the energy sector, we are currently looking for a Cybersecurity Manager for a permanent contract with a start asap.

Mission:

As a SPOC, you ensure that within your Business perimeter(s), cybersecurity risks are anticipated and remain under control, and that applicable policies are implemented and respected. 

You also have to develop and maintain cybersecurity expertise in one or more specific technical domains to help the Business.

You hierarchically report to the MBU CIO Belux.

In close collaboration with the Business Entities:

• You ensure that cybersecurity risk management processes are in place within the different activities of the various IT delivery organizations, in line with Group and BU directives and strategies
• You verify that cybersecurity risk assessments are conducted in the context of all Digital/IT - related projects. This verification includes the quality of the assessment itself, establishment of Business cybersecurity risk ownership, proper implementation of the mitigating controls, the formal residual risk acceptance by the owner, and the documentation of those in a central BU-wide register
• You act on behalf of the CISO Group to approve residual risk, together with the Business Process Owners
• You ensure compliancy with applicable policies and mandatory standards or in case of non-compliance, facilitate the derogation process in collaboration with the Group CISO, document and monitor approved derogations
• You support the various cybersecurity stakeholders within your business scope
• You organize cybersecurity awareness sessions towards the user community in the Business domain you are responsible for, in close collaboration with BU and/or Group level initiatives
• You ensure the proper functioning of identity and access management processes
• You ensure that the Cyber and Information Assets are adequately monitored
• You implement the BU level cybersecurity in the corporate framework and selected tooling
• You detect, remediate, document, escalate and follow-up cybersecurity related incidents
• You ensure that the needed Group level KPI’s get reported
• You decide and manage the required Cybersec budgets
• You organize regular security audits within you scope and follow-up the remediation plan
• You execute other cybersecurity related activitie
• You take GDPR legislation into account and involve the GDPR teams if needed
• You develop and maintain expertise in a specific technical domain (e.g.: Cloud, workstation, networking, digital, Scada systems security)
• You define the need for specific technical policies, standards or guidelines and ensure these documents are created in collaboration with internal and/or external staff
• You define and implement new security foundations/services in collaboration with the infrastructure team. Assist other security managers to identity and measure risks when they come in contact with technical domains within your specialty

Internal interfaces:

• CISO Group
• CIO
• IS Architects, IS Technical Experts
• HR department
• Legal
• Business Process Owners
• Data Privacy Managers
• Local IS Stakeholders and BU representatives
• Project stakeholders

External interfaces:

• Peer community organizations
• Consulting companies
• Country level government bodies related to Information Security
• Third party Service suppliers

Profile:

Education:

You have a degree in Information Technology or are equivalent through experience

Profesional experience:

• You have at least 10 years’ experience within the field of Information Technology
• You have 5 years’ experience specifically within the field of Information Security Technology

Hard skills:

• You have at least one of the following Security Certifications: CISSP, CISA, CISM
• You have the following technical/business skills: general skills in various Information Systems Architectures, process design skills and extensive Information Security process knowledge skills
• You have business understanding of information system needs within Energy (Services) markets and of the various Business needs within the Business Entity of your perimeter or the ability to quickly acquire this knowledge
• Languages: English and French and / or Dutch

Behavioral skills: 

• collaboration and conflict resolution
• planning, tactical and strategic management
• communicating: translating complex technical matters into non-technical terms in order to facilitate stakeholders making the correct decisions
• convincing/negotiating
• conceptual thinking
• resilience to stress
• taking initiatives
• decision making

Client’s offer:

• A permanent contract within a company that is leader on its market
• A challenging job based in Brussels
• A competitive salary package
• A wide range of training & development opportunities
• A priority to internal mobility by first presenting new vacancies to our client's employees
• A healthy work/life balance