GRC Risk Officer

For a client, we are seeking a GRC Risk Officer to join their team. This position is set to start on October 28th for a long-term engagement, with a minimum requirement of 2 days per week on-site presence.

Responsibilities

• Manage and improve Governance, Risk, and Compliance processes.
• Ensure compliance with regulations such as NIS2 and GDPR.
• Contribute to the development and maintenance of an effective Information Security Management System (ISMS).
• Coordinate, manage, or support projects and initiatives within the CISO department.
• Report on CISO domains and security findings.
• Follow up on IT Compliance and maintain data quality and completeness.
• Support colleagues within the CISO domain.

Qualifications and Experience

• Master's degree in Computer Science, Business Administration, Law, or a related field; or a Ph.D.
• Relevant work experience of 5 to 10 years, with at least 5 years in a similar GRC role.
• Experience in risk assessment, vulnerability management, and security incident response.
• Proven project management experience, including budgeting and presenting to senior management.

Skills and Certifications

• CISSP, CRISC, PMP, Prince2, or equivalent certification.
• Knowledge of ISO 27001-27005, NIST Cybersecurity Frameworks, and GRC-Tooling.
• Familiarity with cybersecurity and privacy standards, frameworks, policies, regulations, and best practices.
• Strong analytical and problem-solving skills.
• Excellent communication skills, both written and verbal.

Language Proficiency

• Native-level proficiency in Dutch and/or French.
• Good knowledge of the second national language and English.