Security GRC Consultant

Zaventem, Belgium

Applications have closed

Devoteam

We are focused on technology consultancy: digital strategy, platform technologies, cybersecurity & more. Let's work on your business digital innovation!

View company page

Company Description

Devoteam is a leading consulting firm focused on digital strategy, platform technologies, Cyber Security and business transformation. We are partner of the year of the five cloud leaders: Microsoft, AWS, Google, ServiceNow and Salesforce. 

We strive for businesses to turn their challenges into value and help them seize their true potential. Focus on continuous improvement is key. With cybersecurity as a mindset and a user-centric approach, our team supports your entire corporation.

With creative tech, we reach for a better change. Inspired people have the power to transform the world around them. Devoteam stands for innovation, agility and growth. We are a place of work where both customers and employees can have a limitless future.

With 25 years’ experience and more than 8,000 employees across Europe, the Middle East and Africa, Devoteam promotes responsible tech for people and works to create better change.

In Belgium, we have a strong team of almost 500 digital professionals that differentiates itself in the sector thanks to an end-to-end approach. We offer a wide range of services: from strategic advice by business consultants to successful realizations by technology consultants.

Devoteam helps the clients to succeed their transformation journey. Cyber Security is one of the first priorities with the ambition to extend our market presence by focusing on Expertise and Excellence. In Belgium, we are already 50 security experts committed to this vision by proposing a modern security approach adapted to the new reality that encompasses the 3Ps: People, Processes and Products.

Job Description

What are we looking for?  

As a Security GRC consultant, you are able to engage with our clients in all industry sectors to scope out their cyber requirements and to deliver on their Governance, Risk and Compliance projects based on your expert advice. You are able to help clients understand their risk exposure in their environment and design solutions to remediate their risks.

What will your day look like?

You will adopt and integrate Compliance & Risk Frameworks for specific projects at our clients. This can include data entry into ServiceNow GRC tool, creating status reports and maintain statistics. You will also support our clients in the development of their security program regarding compliance and data privacy, which includes performing or documenting Framework Assessments; advising on or creating appropriate Policies; and revising, creating, or assisting in the creation of Risk Management, Incident Response, and Business Recovery programs.

Who will you work with? 

You will be part of the Cyber Trust team with more than 50 people in Belgium, exchanging insights and knowledge, “ensuring a secure IT environment protecting the business goals”. You will work with our customer’s business and technical employees to capture, discuss and verify cyber risks. You work on flexible daily basis, on-site at client’s office, at Devoteam in Zaventem or at home. You will report to your practice manager, who will be your point of contact for development and career guidance.

Qualifications

We Hire for Attitude and Train for Skill…

The person we are looking for combines the qualities of a good communicator and an expert in the domains of Information Security, Cybercrime, and IT. The more boxes you can tick in the list below, the closer you match the ideal profile we are looking for.

Technical Skills

  • Experience with Governance, Risk and Compliance (GRC) and Enterprise Operational Risk Management Projects, Business Continuity Management and Internal Audit to meet regulatory requirements
  • Experience of working in an environment where you have delivered GRC solutions to clients in a complex technical environment, meaning assessment, design and implementation of ISMS, risk management and compliance programs.
  • Experience with data analysis tools (PowerBi, SQL) and techniques including advanced concepts of Microsoft Word, Excel, and PowerPoint and/or other analytical software
  • Awareness of IT and risk control frameworks (ISO27001/ISO27002, ISO27005, CIS 20, …). PCI-DSS, SOC2, EU NIS, GDPR. 
  • Experience in advanced configuration (business rules, workflow, notifications, user stories, scripts, etc). Experience implementing GRC platforms is a plus. Knowledge of agile development process is a plus. 

Desired/Preferred Certifications

  • Master’s degree in computer science/Engineer/Cyber Security or relevant work experience in IT Security. 
  • ISO 27K lead auditor or Lead Implementer
  • ServiceNow GRC certification is a plus.
  • Data Privacy and Information Security Certifications are valued including: CISSP, CEH, C/CISO, CISA, CISM, CRISC, CDPSE, CIPP/US, CIPM, CIPT or TOGAF

Who you are

  • You have a passion for Cyber Security, being the basic ingredient of success. 
  • You have the necessary soft-skills set to successfully understand, challenge and translate the business needs and communicate to the relevant parties with a structured and methodical approach to problem solving
  • You have good presentation and writing skills, as you will be expected to brief others on your findings and recommendations.
  • You are a team player and have the talent to cooperate with colleagues in in a changing and fast evolving environment.
  • You are well organized and work effectively and independently.
  • You are a self-starter, pro-active and you take initiative.
  • You are creative, have a critical mind and you like to think out-of-the-box, with focus on solutions rather than problems.
  • You are prepared to constantly keep your knowledge up to date, follow trainings or through self-study.
  • Customer focus is your second nature  
  • You are fluent in Dutch and/or French and have a good working knowledge of English

 

What do we offer you?

  • New colleagues are well supported by an enthusiastic team of experts.
  • A culture of continuous development: at Devoteam, we provide you with the right environment to develop talent and expertise: we invest in our people, help them to grow with the warranty to always use the latest technologies.
  • As part of our Cyber Trust team, you will constantly be in contact with colleagues to learn from them and reverse and you will get the opportunity to contribute to the definition of our Cyber Trust strategy.
  • Our presence in major companies of telco, public and finance services sectors provides you with the opportunity of building relationships and skills that will last your entire professional life.
  • Challenging assignments with focus on expert value and continuous improvement
  • A good work-life balance
  • An attractive and competitive remuneration package with company car, group assurance and DKV.

Additional Information

We value our people over processes and galvanize potential by working at the forefront of innovation. You will develop and grow in an agile and ambitious company where it’s okay to take risks, make mistakes and change plans to find transformative solutions.

At Devoteam, we combine strong values – respect, frankness & passion - with a fun environment that empowers you to innovate and succeed.

>>> Does all this sound compelling to you? Go for it and click that apply button!

Tags: Agile AWS C CEH CIPP CISA CISM CISSP Cloud Compliance Computer Science CRISC Cyber crime Finance GDPR Governance Incident response ISMS ISO 27000 ISO 27001 ISO 27005 Privacy Risk management SOC 2 SQL Strategy TOGAF

Perks/benefits: Career development Flex hours Home office stipend

Region: Europe
Country: Belgium
Job stats:  16  7  0
Category: Consulting Jobs

More jobs like this

Explore more InfoSec/Cybersecurity career opportunities

Find open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Analysis, Cryptography, Digital Forensics and Cyber Security in general, filtered by job title or popular skill, toolset and products used.