For a client, we are looking for an IT Security Program Manager.

Project duration: 05/01/2026 - 29/05/2026 
Workplace: Brussels, with a hybrid working mode
Required languages: French, English (Dutch is an asset)

CONTEXT:

As part of the compliance with the NIS2 directive, we are looking for an experienced Senior Cybersecurity Program Manager to lead our NIS2 roadmap.

MAIN MISSION:

The Senior Cybersecurity Program Manager will be responsible for the development, implementation and monitoring of the NIS2 compliance strategy within the organization.

KEY RESPONSIBILITIES:

Strategy & Planning NIS2
Develop and maintain the NIS2 strategic compliance roadmap
Conduct gap analysis between the current state and NIS2 requirements
Define program priorities, milestones and deliverables
Establish the budget and necessary resources for the program
Governance & Management
Manage the NIS2 program from end to end (Agile/Waterfall)
Coordinate the multidisciplinary teams (IT, Legal, Compliance, Business)
Ensure regular reporting to the COMEX and the competent authorities
Manage program risks, dependencies and issues
Compliance & Technical Implementation
Supervise the implementation of cybersecurity measures required by NIS2
Develop and review security policies, procedures and frameworks
Ensure the integration of NIS2 requirements into existing processes (ISO 27001, GDPR)
Coordinate with the technical teams for the deployment of controls
Risk Management & Incident Response
Establish and maintain the cybersecurity risk register
Improve incident detection, response and recovery capabilities
Define the procedures for notification to the authorities (CSIRT/CERT)
Pilot the crisis exercises and continuity tests
Third-Party & Supply Chain Security
Assess and manage cybersecurity risks of critical suppliers
Implement due diligence processes for the supply chain
Ensure provider compliance with NIS2 requirements
Communication & Training
Raise awareness and train stakeholders on NIS2 requirements
Develop a culture of cybersecurity within the organization
Communicate with regulators and supervisory authorities

PROFILE:

Minimum 7-10 years of experience in cybersecurity and program management
Demonstrated experience in implementing regulatory compliance programs (NIS2, GDPR, DORA, etc.)
In-depth knowledge of security frameworks (ISO 27001/27002, NIST, CIS Controls)
Experience in managing complex projects in regulated environments
Excellent leadership, communication and stakeholder management skills
Experience in the Belgian or European public sector highly appreciated
Ability to work independently and manage multiple priorities

WORK ENVIRONMENT:

Hybrid work: 3 days/week on site (Brussels) minimum
Collaboration with multidisciplinary and international teams
Direct reporting to the CISO or the executive management