Homepage Open Sollicitatie / Inschrijven

logo

Bekijk alle vacatures

Group Security Capability Lead

Brussel, Brussel

Job Posting: Group Security Capability Lead

Start Date: As soon as possible

End Date: 01/05/2026 (with possible extension pending internal fulfillment)

Languages: Bilingual proficiency in Dutch and French, both spoken and written

Additional: Previous experience with the client is a plus

Position Overview:

As a Group Security Capability Lead, you will be fully accountable for the lifecycle and performance of a Group Security Capability, from strategy to execution and operations. You will operate at the intersection of cyber risk, business priorities, regulatory requirements, and technology, translating Group Cyber objectives into a clear, outcome-driven capability roadmap and reliable delivery. You will lead and enable cross-functional security squads, collaborate closely with entity IT and security teams, and act as a key bridge between Group strategy and local execution. This is a leadership role, not a specialist role: success is measured by outcomes, adoption, risk reduction, and operational excellence.

Key Responsibilities:

  1. Vision & Roadmap
    • Define and maintain a clear vision and purpose for the security capability, aligned with Group Cyber strategy, business priorities, and regulatory obligations (e.g., NIS2).
    • Translate strategic objectives into a prioritized, outcome-driven roadmap, balancing short-term risk reduction with long-term capability maturity.
    • Continuously review and adapt the roadmap based on outcomes, stakeholder feedback, delivery realities, and evolving threat landscapes.
    • Actively socialize and defend the vision, creating alignment across Group leadership, entities, IT, security, and business stakeholders.
  2. Outcome Focus & Risk Reduction
    • Own measurable outcomes, including cyber risk and exposure reduction, compliance and audit readiness, operational resilience, and business enablement.
    • Define success metrics and feedback loops to track impact and steer prioritization.
    • Shape demand by challenging assumptions and focusing teams on the highest-value problems.
  3. Team Building & Capability Leadership
    • Shape and evolve the capability teams and squad structures, ensuring the right mix of skills, seniority, and capacity.
    • Attract, develop, and retain talent through coaching, feedback, and clear development paths.
    • Build a shared identity and culture around ownership, accountability, collaboration, and continuous improvement.
  4. Financial Ownership
    • Own the capability budget end-to-end, including platform and tooling costs, delivery and run capacity, and external partners and vendors.
    • Balance cost, risk reduction, and long-term value, avoiding both over-engineering and under-investment.
  5. Architecture & Technical Coherence
    • Ensure the capability evolves within a coherent, sustainable, and enterprise-aligned architecture.
    • Align with Group Enterprise Architecture while empowering capability squads to own technical decisions within clear guardrails.
  6. Data-Driven Decision Making
    • Use data to steer prioritization, delivery, operational improvement, and risk management.
    • Ensure reliability, accessibility, and appropriate governance of capability-related data.
  7. Predictable Delivery
    • Establish disciplined planning and prioritization practices.
    • Provide transparent reporting on progress, risks, and commitments to stakeholders.
  8. Optimal Run & Operational Excellence
    • Ensure stable, secure, and high-performing operation of the capability.
    • Define and maintain clear operational models, ownership boundaries, and SLAs.
  9. Transformative Leadership
    • Bring clarity in ambiguity and momentum in complex, federated environments.
    • Lead with resilience, pragmatism, and persistence through non-linear transformation journeys.

Expected Outcomes:

  • A clearly articulated and widely understood Group Security Capability vision and roadmap
  • Measurable reduction in cyber risk and exposure across entities
  • Consistent adoption of Group security standards and platforms
  • Improved operational maturity, predictability, and resilience
  • Reduced fragmentation, duplication, and total cost of ownership
  • High engagement and performance of the capability teams

Required Experience & Profile:

  • Proven experience owning a product, platform, or capability end-to-end in a complex organization.
  • Experience in several cybersecurity domains (e.g., IAM, SOC, Vulnerability Management, Network or Cloud Security).
  • Exposure to large, federated, or multi-entity environments.
  • Experience balancing transformation, delivery, and run responsibilities.
  • Budget ownership and financial decision-making experience.

Skills & Competencies:

  • Strong strategic and systems thinking
  • Ability to translate cyber risk into business-relevant priorities
  • Comfortable operating in ambiguity and transitional states
  • Strong stakeholder management and influencing skills
  • Pragmatic, outcome-driven mindset

Education & Qualifications:

  • Master’s degree in Engineering, Computer Science, Cyber Security, or equivalent experience.
  • Relevant security or leadership certifications are a plus.

Deel deze vacature

Powered by