Role: Security Architect (Brussels, Belgium)
Duration: ASAP - End of the year (Possible extension)
Company Overview:
The role is through a leading European IT services provider, working onsite with one of their major transport sector clients. This client is responsible for some of the most critical transport infrastructure, their systems keep services running day-to-day and play a major role in national mobility.
Core Responsibilities
* Design and maintain the target security architecture.
* Define and apply architecture standards, models, and principles.
* Integrate multiple domains: network, cloud, IT/OT/IoT, identity/access (ICAM), cryptography, data security.
* Review solutions via security intake processes and architecture committees.
* Conduct technical/architectural risk assessments across projects, applications (including SAP), IT/OT/IoT, AI usage.
* Identify threats and recommend mitigations.
* Draft/update technical security standards aligned with CyFun, ISO 27001, NIST, IEC 62443, NIS2, GDPR, etc.
* Guide technical decisions in governance forums.
* Ensure alignment with internal standards and maintain decision traceability.
* Support project and business teams with integrating security requirements in complex contexts (SAP, IT/OT convergence, cloud, access management).
* Advise during design, solution analysis, and procurement (RFI/RFP).
* Ensure critical components (ICAM, detection/response, crypto) align with security objectives.
Experience & Skills
* Bachelor’s in Cybersecurity/Computer Science (Master’s preferred).
* 5+ years in security architecture for complex hybrid environments (IT, OT, IoT, Cloud, ERP).
* Deep knowledge of regulations, standards, and frameworks (CyFun, ISO 27001, NIST, IEC 62443, NIS2, GDPR).
* Broad technical expertise in: Network segmentation, Zero Trust, cloud security.
* Secure SAP integration
* ICAM (IAM, PAM, federation, provisioning)
* Cryptography (PKI, key management, strong auth)
* XDR, SIEM, monitoring
* Secure AI usage
* Architecture modeling (Archimate)
* Certifications: CISSP strongly preferred; CISM, CISA, ISO 27001 LI, SABSA valued.