Job details

You are in: Home » Jobs » GRC Officer (NIS2)

Job Details

  • Location: Brussels-Capital Region, Belgium
  • Pay: Negotiable

Share this job

GRC Officer (NIS2)

  • Contract
  • Anywhere

Location

Centre of BrusselsHybrid – 1 day on-site per week

Sector

Public Sector

Languages

 

  • Dutch or French (Fluent, mandatory)
  • English (Professional working level)

Role Overview

We are seeking an experienced GRC Officer to lead the implementation of the NIS2 Directive within a public-sector environment. In this role, you will combine governance, risk, and compliance (GRC) responsibilities with the advisory function of a CISO as a Service. Your expertise in cloud security (M365, Azure) and ISMS will be critical to ensuring compliance and enhancing the overall security posture of the organization.

Key Responsibilities

 

  • Lead NIS2 Implementation: Oversee the implementation of the NIS2 Directive, ensuring alignment with public-sector cybersecurity requirements and regulatory standards.
  • CISO as a Service: Act as the organization’s CISO as a Service, providing strategic advice and guidance to senior leadership on cybersecurity risks, policies, and improvements.
  • ISMS Development & Management: Design, implement, and maintain the Information Security Management System (ISMS), ensuring compliance with ISO 27001 and NIS2.
  • Risk & Compliance Management: Conduct risk assessments, lead security audits, and track compliance to regulatory frameworks, addressing any identified gaps or vulnerabilities.
  • Cloud Security Advisory: Provide expertise in securing Microsoft 365 and Azure environments, ensuring appropriate governance, secure configurations, and compliance with NIS2.
  • Training & Awareness: Facilitate security workshops, training, and awareness programs to promote a security-conscious culture across the organization.

Required Skills & Experience

 

  • Proven experience as a GRC Officer, CISO, or Security Consultant in regulated environments.
  • In-depth knowledge of NIS2 Directive and its implications for public-sector cybersecurity.
  • Strong expertise in ISMS frameworks (ISO 27001), risk assessments, and compliance management.
  • Experience with cloud security governance, particularly in Microsoft 365 and Azure.
  • Excellent communication and stakeholder management skills, with the ability to work effectively in a consultancy environment.
  • Fluent in Dutch or French with professional English proficiency.

Desirable Skills

 

  • ISO 27001 Lead Implementer or similar certifications.
  • CISSP or CISM certifications.
  • Experience working with European institutions or within public-sector frameworks.
  • Familiarity with GDPR and data protection regulations.

Apply for GRC Officer (NIS2)

Upload your CV/resume or any other relevant file. Max. file size: 1 MB.
Please indicate that you have read and agree to our privacy policy