Senior Cyber security and risks project manager

Function

We're looking for a skilled consultant to join our client's team in a pivotal role focused on enhancing cyber security measures and managing associated risks. As part of a dedicated Cyber Security and Risk Management team, this professional will coordinate strategic initiatives and work within a regulated, high-security environment, ensuring comprehensive stakeholder engagement and project delivery. The successful candidate will demonstrate a blend of expertise in both hands-on project management and high-level risk management.

Key Responsibilities

In this role, you will:

• Lead and manage cyber security and risk management projects from inception through to completion with full accountability.
• Develop and maintain essential project documentation, including roadmaps, risk registers, issue logs, and reporting dashboards.
• Drive Governance, Risk, and Compliance (GRC) initiatives, including criticality assessments and third-party risk management.
• Oversee internal and external security audits and ensure proper documentation and remediation tracking.
• Ensure adherence to established security frameworks and standards, including ISO 27001, NIST, and CIS.
• Collaborate with diverse stakeholders, including security teams, IT, audit, and architecture leads while optimizing processes and reporting.

Profile of the Ideal Candidate

The ideal candidate will possess:

• Extensive experience as a Senior Cyber Security Project Manager or Programme Manager within complex and regulated settings.
• A strong background in risk management, security governance, and compliance frameworks.
• Experience working with financial institutions, public sector entities, or EU institutions is highly desirable.
• A proven capacity to lead cross-functional teams, enhance process efficiencies, and manage stakeholder expectations effectively.
• Fluency in both Dutch or French and English is required.

Additional Requirements

• Describe a cyber security or risk management programme you managed end-to-end. What were the main risks and how did you mitigate them?
• Explain your experience implementing or operating a GRC solution. What data, processes, and stakeholders were involved?
• Provide an example of how you coordinated internal or external security audits and managed remediation actions.
• Discuss a situation where you had to handle multiple stakeholders with conflicting priorities related to security.
• How do you ensure project delivery within budget and timelines in complex cyber security settings?