Position

Employeur

Détails de l'employeur

Our client is a well known systems security and network provider. They plays a strategic role in enabling secure and high-performance connectivity, cloud solutions, and cybersecurity frameworks.

They are located near central station in Brussels. 

They want to contract a freelance ISMS Manager, responsible for the development, implementation, maintenance, and continuous improvement of the organization’s Information Security Management System (ISMS) in accordance with the ISO/IEC 27001:2022 standard. Reporting to the Chief Information Security Officer (CISO), the ISMS Manager acts as a key advisor and operational sounding board for all matters related to information security governance.

2 year contract from 01/09/2025 - 31/08/2027

Description du poste

• Achieve the objectives defined in the ISMS policy aligned with ISO/IEC 27001:2022.
• Coordinate and perform risk assessments, vulnerability audits, and security reviews using an ISO 27005-based methodology.
• Develop, maintain, and improve ISMS frameworks, documentation, policies, and procedures.
• Support the CISO in:
  • Developing and implementing security strategies, objectives, roadmaps, and awareness programs.
  • Preparing for and participating in management meetings on security policy.
  • Securing necessary resources to operate the ISMS effectively.
• Collaborate with the Information Security Manager (ISM) on security budgeting and resource planning.
• Assist operational teams in creating and maintaining risk treatment plans and implementing security controls.
• Support departments in identifying and managing information security risks.
• Monitor and report on the effectiveness of risk mitigation measures.
• Oversee implementation of corrective actions following audits or security incidents.
• Capture and document information security requirements and expectations from relevant stakeholders; contribute to ongoing process improvement and IAM documentation.
• Foster internal relationships to ensure understanding and adoption of security policies.
• Stay informed about emerging threats, vulnerabilities, best practices, and regulatory developments; propose ISMS enhancements accordingly.
• Support compliance audits and reporting for ISO 27001, SOC 2, HIPAA, GDPR, and other relevant regulations.

Expérience requise

• Manadatory is to have experience with information security frameworks, risk management, and regulatory compliance requirements related to information security.
• You have experience with at least 1 large project where you were directly responsible for implementing an ISMS or ISO 27001 framework.

Technical and Core Competencies

• Deep understanding of ISMS and ISO 27001 standards.
• Expertise in risk assessment and management.
• Familiarity with Governance, Risk, and Compliance (GRC) practices.
• Strong project management and organizational skills.
• Excellent communication and analytical skills; ability to explain complex security topics to technical and non-technical stakeholders.
• Strong documentation and process management capabilities.
• Proactive, detail-oriented, and able to manage multiple priorities.
• Commitment to continuous improvement.

Assets

• Professional certifications such as ISO 27001 Lead Implementer/Auditor, CISSP, CISM, or equivalent.
• Native Dutch OR French speaker with strong proficiency in the other language and English.

Offre

Daily rate to be discussed.