CrawlJobs Logo
Sopra Steria Logo Sopra Steria · IT - Administration

Nis2 Consultant

Belgium, Machelen · Job Posted April 16, 2026
Apply Position
Job Link Share

Job Description

We are looking for an experienced Governance, Risk & Compliance (GRC) Consultant with deep expertise in EU regulatory frameworks, as well as a NIS2 Specialist to strengthen our compliance and cybersecurity governance programs. You will play a key role in advising, implementing, and managing initiatives aligned with European security and compliance directives, ensuring proper risk management practices across our organization.

Job Responsibility

  • Lead and support security and compliance initiatives aligned with NIS2 requirements
  • Be key support person for the client in their NIS2 journey
  • Conduct risk assessments, maturity evaluations, and design internal control frameworks
  • Provide strategic advice on governance structures, compliance reporting, and regulatory alignment
  • Drive ISO 27001 implementation and act as an Information Security Officer (ISO) advisor where needed
  • Support project and program management activities related to cybersecurity and compliance
  • Act as subject matter expert on NIS2 requirements, advising on implementation and compliance strategies
  • Conduct gap analyses against NIS2, design risk mitigation and reporting processes
  • Train and guide stakeholders in understanding obligations under NIS2
  • Drive business development initiatives regarding NIS2
  • Able to identify key opportunities and support pre-sale process
  • Proactive in this area
  • Support RFOs, RFPs when necessary

Requirements

  • 2-5 years of experience in Governance, Risk & Compliance ideally in public and industry sectors
  • Proven track record with information security frameworks, particularly ISO 27001
  • Knowledge and experience with CyFun is necessary
  • Hands-on experience as Information Security Officer (ISO role or advisory capacity) or ad minima, as security manager in larger projects
  • Strong project management background, preferably in multinational environments
  • Must have: ISO27001 certificate
  • Strong communication and stakeholder management skills
  • Ability to interpret regulations into practical, business-driven compliance processes
  • Autonomous in delivery, fast learner and excellent stakeholder management skills
  • Can position oneself as a person of trust easily with key stakeholders
  • Possesses consulting mindset and hands-on attitude
  • Positive person and a team player
  • Analytical and structured approach to risk and compliance management
  • Language skills: Strong preference: English + either French or Dutch

Nice to have

Nice to have: CISA, CISM, any other ISO relevant certificate

What we offer

  • Mobility options (including a company car)
  • Insurance coverage
  • Meal vouchers
  • Eco-cheques
  • Continuous learning opportunities through the Sopra Steria Academy
  • Opportunity to connect with fellow Sopra Steria colleagues at various team events
Sopra Steria - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Nis2 Consultant

8 matching positions

Cyber Security Compliance Consultant

Join a team of experts dedicated to delivering innovative solutions and driving ...
Location
Location
Austria , Vienna
Salary
Salary:
Not provided
alpenite.com Logo
Arsenalia
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 4–6 years of experience in cybersecurity consulting, compliance, or security governance
  • Strong knowledge of key cybersecurity regulations and frameworks: NIS2, ISO 27001, TISAX, GDPR
  • Proven experience in security audits, risk assessments, and gap analyses
  • Skilled in designing security management systems and compliance processes
  • Excellent communication skills and ability to engage with clients across industries
  • Comfortable working on projects with variable timelines
  • Methodical, precise, and client-oriented approach to documentation and delivery
  • Willingness to travel for short, medium, or long-term assignments
  • English proficiency at B2 level or higher
Job Responsibility
Job Responsibility
  • Support clients in achieving and maintaining compliance with key cybersecurity regulations (NIS2, ISO 27001, TISAX, GDPR)
  • Conduct security assessments and gap analyses to define remediation plans
  • Design and implement ISMS aligned with international standards
  • Manage consulting projects for audit readiness and certification
  • Act as Virtual CISO, providing strategic guidance on security governance
  • Develop security policies and documentation based on regulatory frameworks
  • Deliver training and awareness sessions on compliance and best practices
  • Track regulatory changes and advise clients on new requirements
What we offer
What we offer
  • Welfare Package
  • Worklife Kit
  • Empowering People
  • Open Space, Open Mind
  • Career Path
  • Learning & Development
Read More
Arrow Right

Technical Architect - Security

The Technical Architect - Security role at NTT DATA involves designing and imple...
Location
Location
Belgium , Diegem
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor in ICT at a minimum (Master strongly preferred)
  • Relevant certifications or proven knowledge in IT security area (CISSP, CISM, CISA,…)
  • Strong and proven experience in designing, deploying, and supporting large security deployments
  • In-depth knowledge of the current security offering available on the market (Fortinet, Cisco, Palo-Alto, Checkpoint, …)
  • In-depth understanding of the use of security components (IAM, SASE, SSE, NAC, VPN, PAM, cloud security, cloud-delivered security, …) and security models (segmentation model, zero trust model,…) in hybrid and heterogeneous environments
  • Understanding of security control framework (ISO2700x, NIST, CIS,…), security directive (NIS2, DORA, GDPR,..) and risk management processes
  • At least 5 proved years’ experience in architecture and consulting functions
  • French or Dutch as mother tongue and good verbal and written knowledge of the other language as well as English
  • Emotional and stress resilience and ability to autonomously achieve challenging goals
  • Clear and persuasive communication and able to interact with various stakeholders in a consultative engagement
Job Responsibility
Job Responsibility
  • Conduct consultative engagements, as lead consultant or team member, with clients to ensure the delivery of assessment services in security architecture and governance domains
  • Ensure hand-over of engagement information and opportunities to internal stakeholders
  • Help develop standardized consultative engagement templates in response to reoccurring client needs and raise internal awareness of such engagements
  • Perform business development and presales work for opportunities within your domain
  • Act as a mentor for less experienced consultants or architects
  • Participate, together with specialized subject matter colleagues or third parties, to the creation of complex solutions focusing on security with a main focus on service , application and infrastructure components
  • Guarantee the global coherency of proposed solutions
  • Understand the client’s business strategy, policies, processes, services and roadmap and map these to information system, security frameworks and technology architectures
  • Help the client executing on his security governance roadmap by coordinating the design and implementation efforts with a pragmatic and actionable approach
  • Work together with our Transformation Consultants and the client’s CISO or security manager to deliver strategic advice for improvement
  • Fulltime
Read More
Arrow Right

GRC Cybersecurity Consultant

As a GRC Cybersecurity Consultant, you strengthen cybersecurity governance and e...
Location
Location
Belgium , Machelen
Salary
Salary:
Not provided
https://www.soprasteria.com Logo
Sopra Steria
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Cyber & ISMS: cybersecurity expertise, regulated environments, ISMS, security-by-design, audits
  • GRC & Privacy: risk & compliance assessments (e.g., maturity, DPIA), compliance evidence, reporting
  • Standards & Regulation: NIS2, ISO 27001/2700x, CyFun, GDPR, AI Act awareness
  • ITIL/Prince2
  • Delivery: project/program management, independent execution, pre-sales (RFP/tenders)
  • Stakeholders & Comms: client-facing consulting, stakeholder management (e.g., CISO/DPO/regulators), presenting
  • Ways of working: analytical/structured, hands-on, solution-oriented, team coordination
  • Languages: English + Dutch and/or French
  • Certifications: ISO 27001 (LI/LA)
  • CISSP/CISA/CISM/CRISC (plus)
Job Responsibility
Job Responsibility
  • strengthen cybersecurity governance and ensure business practices align with EU and national regulatory requirements
  • advise clients and internal stakeholders
  • translate complex legislation into practical controls
  • lead compliance and risk initiatives that improve security posture and operational resilience
  • ensure operations meet high standards of efficiency, security and legal compliance
  • keep governance and controls current as regulations evolve
  • make audits, risk management and remediation practical and measurable
What we offer
What we offer
  • extensive career development opportunities both local and international
  • access to Sopra Steria Academy
  • dynamic network of 56,000 professionals
  • wide array of offices to explore
  • Fulltime
Read More
Arrow Right

Cybersecurity Consultant

The objective of Egis' cybersecurity team is to control cybersecurity risks and ...
Location
Location
United Kingdom , London
Salary
Salary:
Not provided
egis-group.com Logo
Egis in the UK
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Cybersecurity Academic qualifications, or hands on practical experience in cybersecurity, information security and/or information governance & risk management
  • Knowledge and understanding of cybersecurity standards and standards such as: European NIS2 directive, NIST CSF, IEC 62443, ISO 27xxx, GDPR awareness is necessary
  • Masters or degree in relevant subject area, Engineering, Cybersecuriity, Business Risk Management etc.
  • Organisational and prioritisation skills
  • Strong research and analytic skills
  • Excellent written and verbal communication skills
  • Computer literate with advanced skills in Microsoft Office suite (Word, PowerPoint, Excel)
  • Experience with professional services business environments preferred
Job Responsibility
Job Responsibility
  • Involvement in existing cybersecurity projects with the incumbents on a projects throughout the Egis C&O business line: Development of cybersecurity and information security requirements in line with standards and regulatory drivers
  • Mapping between existing business practices and cyber evaluation frameworks such as UK NCSC CAF, NIST CSF, Eurocontrol Cyber Maturity Model, etc.
  • Design and roadmap development for the implementation of security practices and processes through a range of existing organisations
  • Design & Establishment of risk registers, risk assessments, Information Security Management Systems and Risk Management frameworks
  • Ad hoc support for the production of cybersecurity technical studies (detailed analysis of data and systems, identification of risks, collection of additional data, interpretation of data and formulation of recommendations for improvement, validation of cybersecurity documents and processes)
  • Occasional support for the drafting and/or costing of certain cybersecurity offers
  • Fulltime
Read More
Arrow Right

Cyber Security Team Leader

Cyber Security Technical Lead. We are looking for a Cybersecurity Technical Lead...
Location
Location
United Kingdom , Hebburn
Salary
Salary:
70000.00 - 75000.00 GBP / Year
thepeoplenetwork.co.uk Logo
Fynity
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum Level 4 qualification (or equivalent) in Network Engineering, Computer Science, Electronic Engineering, Network Security, or a related field
  • Cybersecurity certification achieved or in progress (e.g., ISA/IEC 62443 Fundamentals, CISSP)
  • Experience in Operational Technology (OT) or Industrial Control Systems and relevant standards such as IEC 62443 and IEC 62351
  • Knowledge of substation automation, protection systems, and protocols such as IEC 61850
  • Understanding of NIS2 regulation and Security Level requirements
  • Familiarity with OT network architectures (e.g., HSR, PRP)
  • Understanding of network security technologies (Firewalls, IDS, IPSec, SSL)
  • Excellent written, verbal, and interpersonal communication skills
Job Responsibility
Job Responsibility
  • Supporting and consulting project delivery teams (development, engineering, or service) to design, configure, and implement secure architectures and product & solution security (software and hardware)
  • Developing and maintaining Cyber Security Models for new and existing solutions in line with industry and global standards (e.g., IEC 62443, IEC 62351)
  • Driving improvements in cybersecurity procedures and processes to enhance security posture and operational effectiveness
  • Creating Factory and Site Acceptance Test documentation and leading cybersecurity testing activities
  • Coaching and supporting project teams through security activities across development, project management, and service phases
  • Delivering cybersecurity training to internal teams where required
  • Monitoring and reporting cybersecurity status, risks, and actions to management
  • Ensuring compliance with business policies, conduct guidelines, and confidentiality requirements
  • Promoting safe working practices and contributing to a positive safety culture
What we offer
What we offer
  • Performance-based annual bonus
  • Flexible working hours to support work-life balance
  • Generous pension scheme with employer contributions up to 10%
  • 26 days annual leave plus bank holidays, with the option to buy or sell up to 5 additional days
  • Fulltime
Read More
Arrow Right

Junior Cybersecurity Consultant

Ergo are seeking a Junior Cybersecurity Consultant to join our market-leading Cy...
Location
Location
Ireland , Dublin 3
Salary
Salary:
Not provided
ergogroup.ie Logo
Ergo
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum 2+ years in a similar Cybersecurity role
  • Proven experience in conducting compliance assessments and collaborating on governance initiatives
  • Comprehensive and up-to-date understanding of frameworks such as ISO 27001, NIST, CIS and associated regulations/directives such as NIS2, DORA, AI Act & GDPR
  • Exceptional analytical and critical thinking skills, enabling thorough evaluation of complex data and development of effective policies
  • Excellent communication skills, with the ability to convey technical information clearly to both technical and non-technical stakeholders
  • Strong leadership and collaboration capabilities and the ability to manage relationships effectively
  • Experience using a ticketing or ITSM system (for example ServiceNow or similar)
  • Experience supporting Penetration testing activities and providing remediation guidance
  • Experience working with compliance frameworks and security governance initiatives
  • Degree-level qualification in Computer Science, Cybersecurity, Information Security, or an equivalent IT-related discipline
Job Responsibility
Job Responsibility
  • Assist in Cybersecurity assessments designed to evaluate an organisation’s security posture using established frameworks such as CIS, NIST, and ISO 27001
  • Support Penetration testing activities, including steering the activity, conducting walkthroughs of results, and providing remediation paths to customers
  • Inform the business on emerging threats and advise on mitigation strategies
  • Support compliance activity including ISO 27001, Cyber Essentials, Secure Score and MCSB, advise on monitoring and provide opportunities for continual improvement initiatives
  • Build risk universes that account for inherent and residual risk profiles, considering control measures as well as the risks themselves
  • Advise on Security Training and Awareness programs
  • Ensure legislative conformity with respect to GDPR, Cloud Act, NIS2, DORA, AI Act, and other relevant regulations
  • Maintain technical documentation and how-to guides
  • Work closely with SOC Engineers to support SOC/SIEM service delivery
  • Advise on appropriate security tooling solutions
  • Fulltime
Read More
Arrow Right

GRC Consultant

Sopra Steria offers tailored, end-to-end corporate technology and software solut...
Location
Location
Belgium , Brussels
Salary
Salary:
Not provided
https://www.soprasteria.com Logo
Sopra Steria
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of experience in the domain
  • extensive experience with information security management systems (ISMS), compliance audits and ensuring security-by-design
  • interest in AI security developments
  • familiarity with IT processes based on e.g. ITIL
  • knowledge of standards and legislations such as ISO2700x, NIS2, GDPR, AI and Cyber Fundamentals
  • experience working in the EU or public sector, navigating complex projects
  • fluency in English, French and/or Dutch
  • certifications such as CISSP, CISA, CISM, CRISC or ISO27001 - Lead Implementor or Lead Auditor, AI risk management (ISO42001) is desirable.
Job Responsibility
Job Responsibility
  • design and develop secure solutions to complex application problems - deliver clients projects end-to-end, interfacing across stakeholders
  • implement hardening controls using CIS benchmark across different system components and applications to reduce attack surface
  • lead risk assessments, identification, analysis, treatment, and monitoring across clients
  • perform BCPs, draft Security Plans and roadmaps, ensure third-party risk management
  • cooperate with key stakeholders such as CISO
  • implement/support DevSecOps processes and security engineering review of code and IT configuration
  • support internal and external audits including audit planning, evidence gathering, gap analysis, and remediation tracking
  • support business development and GRC team in driving NIS2 and AI security initiatives and projects
  • support presale process by drafting and leading relevant offers, RFPs, etc.
What we offer
What we offer
  • extensive career development opportunities, both local and international
  • participation in Sopra Steria Academy
  • dynamic network of 56,000 professionals
  • wide array of offices to explore to find ideal location
  • Fulltime
Read More
Arrow Right

Information Security Operations Consultant

We are looking for an IS Operations Consultant to support the setup and operatio...
Location
Location
Salary
Salary:
Not provided
n-ix.com Logo
N-iX
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of experience in Information Security operations (SOC, VM, IR, or similar)
  • Strong hands-on knowledge of security technologies (SIEM, EDR/XDR, vulnerability scanners)
  • Experience working in enterprise or multi-entity environments
  • Familiarity with cloud security concepts (AWS, Azure, IAM, logging, encryption)
  • Working knowledge of regulatory frameworks such as ISO 27001, DORA, or NIS2
  • Experience supporting external security vendors (MSSP coordination is a plus)
  • Strong communication skills and ability to work across distributed teams
  • Fluent in English and Spanish
  • German is a plus
  • Certifications (CISSP, CISM, or similar) are advantageous but not mandatory
Job Responsibility
Job Responsibility
  • Support oversight of external MSSP delivering 24x7 monitoring and incident response
  • Contribute to incident response coordination and post-incident reviews
  • Assist in strengthening cyber resilience through process improvement and operational enhancements
  • Support vulnerability management processes (validation, prioritization, remediation follow-up)
  • Coordinate penetration testing activities and tracking of remediation
  • Support the execution of security awareness campaigns and training monitoring
  • Contribute to alignment with regulatory and audit frameworks (ISO 27001, NIST, DORA, NIS2)
  • Support preparation of audit evidence and documentation
  • Assist in KPI reporting (vulnerabilities, risks, remediation status)
  • Contribute to maintaining consolidated security risk tracking
What we offer
What we offer
  • Flexible working format - remote, office-based or flexible
  • A competitive salary and good compensation package
  • Personalized career growth
  • Professional development tools (mentorship program, tech talks and trainings, centers of excellence, and more)
  • Active tech communities with regular knowledge sharing
  • Education reimbursement
  • Memorable anniversary presents
  • Corporate events and team buildings
  • Other location-specific benefits
Read More
Arrow Right