Security Consultant

Please find below details about the role:Job Title: Security ConsultantContract Duration: 06 monthsLocation: Brussels, BelgiumWorking Environment: Hybrid; 2-3 days per week onsiteStart date: ASAPLanguages: English C1 + Dutch C2Role Summary:We are looking for an experienced Information Security Officer / Security Consultant to support our client. Our client's mission is to develop a coherent, government-wide information policy and support the transition to a data-driven administration.The Information Security Officer will be part of the Security & Risk Team within the IT platform and will contribute to:Internal ISMS implementationThe overarching Flemish information security policy (ICR framework)Role Purpose:Implement and oversee information security across the organizationTranslate organisational security needs into effective controls and measuresDevelop and maintain security plans, risk analyses, incident registers, tools, training, and evaluationsPerform and facilitate risk analyses at strategic, tactical, and asset levelsMonitor and report information security risksInitiate and manage information security and awareness projectsAct as subject-matter expert for internal and external stakeholdersMaintain a documented knowledge base for information securitySkills & Experience:Proven experience as a Security Consultant in one or more of the following domains: data, infrastructure, applicationsDemonstrated expertise in a specific information security domain, e.g.:-Implementing information security management processes-Conducting vulnerability assessments and pentests-Optimising application security using cost-effective methods-Implementing Privileged Access Management (PAM)-Deploying encryption solutionsProven experience in analysing, optimising, and documenting security processes and governanceHands-on experience with security management techniques and/or frameworks, e.g.: ISO 27000 series, COBIT for Security, NIST, OWASP, CIS Critical Security ControlsRelevant certifications depending on domain expertise (CISM, CISSP, CEH)Experience developing an information security policy and ISMS aligned with ISO 27001Experience in security risk management, including quantitative and qualitative risk assessmentsExperience in the public sector (preferably Flemish or Belgian administration)Experience with security audits and compliance assessment methodologies.