IT Security Officer

Governance & Compliance

• Implement and maintain information security policies and procedures in line with international standards and regulatory frameworks (e.g. ISO 27001, NIST, GDPR, DORA).
• Design, implement, and continuously improve the Information Security Management System (ISMS).
• Oversee and maintain Business Continuity and resilience plans, including back‑up testing, recovery procedures, and crisis scenarios.

Risk Management

• Manage Third‑Party Risk Assessments, including security evaluations of new vendors and partners.
• Conduct security assessments and risk analyses for internal projects and specific business requests.
• Define, monitor, and follow up on risk mitigation plans.
• Track developments related to threats, vulnerabilities, and emerging technologies to continuously adapt the security strategy.

Security Operations (SecOps)

• Supervise daily security operations and proactive monitoring activities.
• Act as the main coordination point for security services delivered by external providers.
• Oversee incident and data breach management, including investigations and corrective actions.
• Produce security incident reports and ensure proper escalation and follow‑up until full resolution.
• Ensure robust controls to preserve data confidentiality, integrity, and availability.

Security Architecture & Secure Development

• Define and implement standards for secure coding and secure architecture design.
• Participate in architecture and governance committees to ensure security requirements are embedded in all projects.
• Work closely with IT, legal, and business teams to integrate security by design and by default.

Training & Awareness

• Design and deliver security awareness programs across the organisation.
• Train employees on best practices, security policies, responsibilities, and secure behaviours.

• Bachelor's degree in Computer Science, Cybersecurity, or equivalent experience.
• Minimum 7 years of experience in IT security, information security, or risk management roles.
• Strong knowledge of systems, networks, and security solutions (e.g. firewalls, SIEM, IAM).
• Solid understanding of security standards and regulations (ISO 27001, DORA, NIS, GDPR).
• Analytical mindset, high attention to detail, and ability to communicate effectively with diverse stakeholders.
• Professional proficiency in French and Dutch. English is a plus.
• Natural leadership and strong pedagogical skills to guide, influence, and support organisational change.

• A key position within the digital and security transformation of a recognised mobility services player.
• 
  
  A modern, dynamic working environment equipped with the latest technologies.
• 
  
  A collaborative culture with committed and skilled professionals.
• 
  
  Flexible working hours and hybrid work options.
• 
  
  Ongoing training and support for professional development.
• Competitive package: Hospitalisation and group insurance / Meal vouchers / Access to on‑site fitness facilities and other benefits