senior security consultant security & data protection business & decision brussels reference : buo00796 position and missions as a security consultant, you use your practical knowledge on information security (e.g. on iam) to help our client to implement security processes & tools. tasks and responsibilities: security expertise: perform current state assessments (ie. benchmarking/maturity assessments toward iso 27000, nist, iam best practices…), developing strategies and roadmaps for improvement. technical expertise in the assessment, design, and implementation of security and it risk solutions. implementation & configuration of iam systems: defining role and attribute based access control (rbac/abac) models, asset modeling, and segregation of duty models. processes & policies: definition & practical implementation of security policies, procedures & guidelines. pmo: manage, structure and deliver projects, including redaction of the project charter, project objectives & tasks, required resources, business case, budget vs. expected benefits and timelines for completion. support & maintenance: maintain the security infrastructure components (“bau”), handling & escalating security incidents ambassador: being the face & voice of business &decision at our clients, establishing relationships with client stakeholders, being aware of client opportunities, risks & issues and communicating about it with your colleagues. advantages by joining business & decision you will develop you career within a niche consulting firm specialized in data management and you will collaborate with prominent national and global financial institutions and large retail organizations. you will benefit from a dynamic professional environment with a lot of learning and career development opportunities. you can also count on an attractive salary package including a company car, superior insurance package and extended fringe benefits. we’re very much tailored and organized as an sme (flat structure, decisions are taken locally, trust & delegation at bu level), which helps us to take into account individual needs & growth opportunities. moreover, in this position you will have a high degree of autonomy and responsibility, where initiative is valued and encouraged. the company fast-growing niche consulting firm specialized in the area of digital & data. we have our offices in brussels, antwerp, luxembourg and utrecht. our customers are mainly large companies, active in the financial / payment, retail & utilities sector. in belgium, we mainly provide end-to-end business solutions in the field of business intelligence, customer relationship management, enterprise information management, risk management & information security / data protection services. profile bachelor/master’s degree (computer science, information systems) or relevant professional experience. fluent in english, french and dutch. at least 8-years’ experience as security officer : previous solid experiences in the implementation of several information security solutions (eg: iam & privilege access management, vulnerability management, security logging & monitoring, secure data management …); ability to model complex information systems (including access models & business models); broad knowledge of security governance methodologies is mandatory; relevant certifications such as iso27k lead implementer, cissp, cism or cisa is a differentiator. relevant experience as business analyst, project management in it / it security domain. relevant experience in data management (data modeler, data analyst…). relevant experience in following sectors: retail, banking, industry. knowledges of it security infrastructure and systems (hardware, operating systems, storage, networking, firewalls, osi model, owasp top 10…) practical knowledges of below technologies is iam systems (ie. sailpoint, calendra, ibm tivoly, ca iam solutions, cyberark…); active directory; patching & vulnerability management systems (nessus, qulays, wsus…); data anonymization, data encryption. learning attitude: staying abreast of new developments in information security services and industry knowledge; understanding of the evolving regulatory requirements and compliance issues related to your domain. excellent communication and presentation skills, both written and oral. ability to perform translate complex topics in a clear, comprehensible communication to a broad audience.
Bron : Business & Decision Netherlands BV - B&D Netherlands