Security Consultant

Job Title: Security Consultant
Contract Type: Contract
Location: Brussels, Belgium
Salary: Negotiable
Start Date: 20/3/18
Reference: 71222-ITBEL-NIG_1520936087
Contact Name: Nils Goossensbara
Contact Email:
Job Published: March 13, 2018 10:14

Job Description

Security Consultant

As a member of the Security Governance department, the Security Consultant assists the team on making sure the policy framework is aligned with threat landscape, business transformation, technology capabilities and organisational structure.

As the other team members, the candidate will become accountable for specific-scoped assignments and must be able to:

· Identify and prepare amendments to the policy framework by:

- Writing functional security requirements in collaboration with our CSIRT team which
provide a sufficient protection for the resources based on Attack Vector
- Verify making sure those function security requirements can be met using available

· Assist the Enterprise Security Architecture team in mapping security requirements to IT
Architecture Building Block used by IT to create High-Level Design

· Assist the Enterprise Security Architecture team in defining Security Requirements for
Security Solution Building Block

· Assist IT in identifying and providing remediation to possible compliance issues

· Develop High Level Security Requirements to translate to leadership team (Director-level)
detail security requirements for them to understand the security impact on their business

· Work with both our CSIRT & Enterprise Security Architecture teams to maintain Attack
Vector on Architecture Building Block updated


· Applied and integrated a broad variety of security technologies, producing layered,
defence-in-depth security architectures

· Applied Information Security industry standards / best practice frameworks (e.g. SANS 20)
in large organisations

· Maintained a holistic perspective on the security capabilities needed to support or
deliver the enterprise's strategic goals and objectives

· Fully aware of available security capabilities and challenges related to: IoT, Big Data,
Cloud (SaaS, IaaS, PaaS), API Management, Identity & Access Management, Application Security, Safe development environment, ICS, BYOD & mobility

· Familiar with regulatory and legal requirements related to information Security and Data

· You have already worked in both very dynamic and very formal environments and can combine
strengths of both

Soft Skills:

· You are a doer, are result-oriented and you don't lose focus

· You are passionate about cyber security and you are to keep pace with emerging
technologies and trends, standards and products

· You can write in simple terms and short sentences formal information such as control
procedure or security requirements

· You are intuitive and quickly see if something doesn't look right

· You can be imaginative to solve complex problems

· You are self-aware as you will collaborate with everybody to stay up-to-date, to maintain
trust and make use of everybody's skillset

· You are honest and loyal - you can report sensitive matters in confidence and you can also
tell when you don't know

· You understand that good is better than perfect

Professional Skills:

· ISMS standards & frameworks: ISO 27001, ISO 62443, SANS CSC20, ISF SoGP 2016, OWASP…

· Networking technology: Routing & switching standards, VPN (IPSec, MPLS) standards…

· IT and security infrastructure standards: XML (incl. XSLT, SPML, SOAP, XACML, SAML...),
ESB, Directory technologies & AAA, DBMS, O/S (mobile & server) & related management
systems, OASIS WS-* …


Fluency in English language in addition to your mother language - both verbal and written, with the ability to communicate clearly