Cyber Security Risk Manager

Company Description

Devoteam is a leading consulting firm focused on digital strategy, platform technologies, Cyber Security and business transformation. We are partner of the year of the five cloud leaders: Microsoft, AWS, Google, ServiceNow and Salesforce.

We strive for businesses to turn their challenges into value and help them seize their true potential. Focus on continuous improvement is key. With cybersecurity as a mindset and a user-centric approach, our team supports your entire corporation.

With creative tech, we reach for a better change. Inspired people have the power to transform the world around them. Devoteam stands for innovation, agility and growth. We are a place of work where both customers and employees can have a limitless future.

With 25 years’ experience and more than 8,000 employees across Europe, the Middle East and Africa, Devoteam promotes responsible tech for people and works to create better change.

In Belgium, we have a strong team of almost 500 digital professionals that differentiates itself in the sector thanks to an end-to-end approach. We offer a wide range of services: from strategic advice by business consultants to successful realizations by technology consultants.

Devoteam helps the clients to succeed their transformation journey. Cyber Security is one of the first priorities with the ambition to extend our market presence by focusing on Expertise and Excellence. In Belgium, we are already 50 security experts committed to this vision by proposing a modern security approach adapted to the new reality that encompasses the 3Ps: People, Processes and Products.

Job Description
**What are we looking for?**

If you are fascinated by the risk universe, especially in security, IT, cybercrime, cloud, DevOpsthen you are the new colleague we are looking for.

**What will your day look like?**

You will be a trusted advisor for our customers about the risks they face today in their digital business transformation and how to mitigate those risks to an acceptable level.

You will serve as part of a larger team at our customers, dedicated with the vision to participate to their cyber intelligence cycle. You will follow up the cyber threat landscape by collection of threat information and work on risk analysis. You will identify new cyber trends, relevant to the business and provide advice on threat response plans to key stakeholders. Your focus is to create and maintain best practices procedures, document guidelines respecting the ever-changing rules & regulations and guard compliancy with official standards.

As a Cyber Security Risk manager, you will ensure a sound cyber security maturity level.

**Who will you work with?**

You will be part of the Cyber Trust team with more than 50 people in Belgium, exchanging insights and knowledge, “ensuring a secure IT environment protecting the business goals”. You will work with our customer’s business and technical employees to capture, discuss and verify cyber risks. You work on flexible daily basis, on-site at client’s office, at Devoteam in Zaventem or at home. You will report to your practice manager, who will be your point of contact for development and career guidance.

Qualifications
**We Hire for Attitude and Train for Skill**

The person we are looking for combines the qualities of a good communicator and an expert in the domains of Information Security, Cybercrime, and IT. The more boxes you can tick in the list below, the closer you match the ideal profile we are looking for.

**Technical Skills**
- Master’s in computer science/Engineer or relevant work experience in IT Security with a preference of experience in Risk management.
- Experience with Risk Management Projects, Business Continuity Management and Internal Audit to meet regulatory requirements
- Experience of working in an environment where you have delivered risk management solutions to clients in a complex technical environment, meaning assessment, design and implementation.
- Awareness of IT and risk control frameworks (ISO27001/ISO27002, ISO27005, CIS 20,). PCI-DSS, SOC2, EU NIS, GDPR.
- Knowledge of agile development process is a plus.
- Good understanding of security concepts (Zero Trust Network, CASB, Cloud computing, SIEM, SOAR, PKI, DevSecOps, IAM and PAM,).

**Desired/Preferred Certifications**
- Master’s degree in computer science/Engineer/Cyber Security or relevant work experience in IT Security.
- ISO 27K lead auditor or Lead Implementer
- Data Privacy and Information Security Certifications are valued including: CISSP, CEH, C/CISO, CISA, CISM, CRISC, CDPSE, CIPP/US, CIPM, CIPT or TOGAF

**Who you are**
- You have a passion for Cyber Security, being the basic ingredient of success.
- You have the necessary soft-skills set to successfully understand, challenge and translate the business needs and communicate to the relevant parties with a structured and methodical approach to problem solving
- You have good presentation and writing skills