About the Role
We are looking for an experienced Governance, Risk & Compliance (GRC) Consultant with deep expertise in EU regulatory frameworks, as well as a NIS2 Specialist to strengthen our compliance and cybersecurity governance programs. You will play a key role in advising, implementing, and managing initiatives aligned with European security and compliance directives, ensuring proper risk management practices across our organization.
Key Responsibilities
* Lead and support security and compliance initiatives aligned with NIS2 requirements.
* Conduct risk assessments, maturity evaluations, and design internal control frameworks.
* Provide strategic advice on governance structures, compliance reporting, and regulatory alignment.
* Drive ISO 27001 implementation and act as an Information Security Officer (ISO) advisor where needed.
* Support project and program management activities related to cybersecurity and compliance.
* Act as a subject matter expert on NIS2 requirements, advising on implementation and compliance strategies.
* Conduct gap analyses against NIS2, design risk mitigation and reporting processes.
* Train and guide stakeholders in understanding obligations under NIS2.
* Drive business development initiatives regarding NIS2; identify key opportunities and support pre‑sale process.
* Support RFOs, RFPs when necessary.
Qualifications
* 2-5 years of experience in Governance, Risk & Compliance in public and industry sectors.
* Proven track record with information security frameworks, particularly ISO 27001.
* Hands‑on experience as Information Security Officer or security manager in larger projects.
* Strong project management background, preferably in multinational environments.
* Must have ISO27001 certificate. Nice to have: CISA, CISM, or any other ISO relevant certificate.
* Language skills: strong preference for English plus either French or Dutch (for clients in Belgium).
* Strong communication and stakeholder management skills.
* Ability to interpret regulations into practical, business‑driven compliance processes.
* Autonomous, fast learner, excellent stakeholder management; able to position oneself as a person of trust.
* Consulting mindset and hands‑on attitude; positive and a team player.
* Analytical and structured approach to risk and compliance management.
Why Join Us?
* Work in a strategic role at the forefront of EU cybersecurity and compliance.
* Engage with international teams and high‑impact compliance programs.
* Opportunity to shape readiness for NIS2 implementation.
Benefits
We offer a generous employee benefits package that includes:
* A variety of perks, such as mobility options (including a company car), insurance coverage, meal vouchers, eco‑cheques, and more.
* Continuous learning opportunities through the Sopra Steria Academy to support your career development.
* The opportunity to connect with fellow Sopra Steria colleagues at various team events.
Sopra Steria is an equal opportunity employer. All qualified applicants will be considered for employment without regard to age, ancestry, nationality, color, family or medical leave, gender identity or expression, genetic information, immigration status, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran or military status, race, ethnicity, religion, gender (including pregnancy), sexual orientation or any other characteristic protected by applicable local laws, regulations and ordinances. We foster a work environment that is inclusive and respectful of all differences.
#J-18808-Ljbffr