Who we are looking for
We are looking for a Senior Data Protection Consultant to integrate our Data Protection services into a wider cybersecurity governance and compliance approach.
The position is at the crossroads of data protection and information security, with end-to-end responsibility for regulatory and cybersecurity compliance.
It oversees the implementation, maintenance, and continuous improvement of compliance frameworks, including GDPR, NIS2, and ISO/IEC 27001. It ensures that data protection principles are embedded into security governance, risk management processes, and operational controls. Acting as a key interface between legal, security, IT, and business stakeholders, the role translates regulatory and technical requirements into practical policies, controls, and risk-based decisions.
We are actively looking for people who have the ambition to provide top-notch advice and governance recommendations to clients from various sizes and sectors, helping them improve their data protection and risk management maturity.
Your role and responsibilities
You will integrate your field of action within a more global cybersecurity approach. Therefore, you could rely on the knowledge of your expert colleagues with both technical, legal and governance backgrounds. The team includes all level of seniority.
You’ll bring your knowledge and energy on different steps of data protection and GRC projects, autonomously or within the team.
When assigned on GRC projects, you could:
Perform security and risk assessments,
Implement ISMS, governance, risk management,
Pilot security projects in line with the roadmap you’ve created with the client,
Provide CISO or Assistant-CISO services to our customers,
…
You’ll also be seen as the SME for data protection topics covered by the team, which can include:
Participating in the development of Data Privacy Impact Assessments (DPIA), supervise their implementation, and advise on Data protection applicable legislations and AI Act
Monitor compliance with the international and local data protection legislations (e.g., GDPR, HIPAA, e-privacy directive,, …) and other relevant legislations (DSA, DGA, CRA)
Drive data protection compliance audits.
…
We would like to start the collaboration with a Senior/Expert profile. On top of your own assignments, we count on you to act as a real Subject Matter Expert to reinforce the data protection expertise within the team. This includes:
Actively contributing to the development of tools and methodologies used by your team.
Sharing your knowledge about sector news to your team.
Contributing to market development by participating to pre-sales processes and keeping your eyes opened to new growth opportunities.
Ensuring external visibility (which can take various forms, such as presence at trade shows, conference presentations, use cases, participation in networking groups, etc).
Coaching junior colleagues on your specific expertise. Be their reference for every specific question they could have.
Feel free to take on these extra responsibilities, which will give you greater visibility and valuable cross-functional skills for your future. Be a source of ideas and contribute directly and concretely to the development of the team and the growth of Approach Cyber.
Your profile
Knowledge and expertise:
You have already taken high responsibilities on compliance with cyber standards such as NIS2 or ISO27001, in addition to your recognised expertise in data privacy (e.g. following ISO27701 standard and GDPR).
Your expertise in privacy has been recognised by a Data Privacy Officer certification or any other trainings, certifications, Executive Masters, … in the frame of data protection.
You’ve demonstrated expertise in AI governance, including a strong understanding of the EU AI Act, AI-related risks, and applicable standards, with the ability to ensure AI systems are designed and operated in compliance with data protection and privacy requirements.
A minimum of 4 years of concrete experience in a similar function (DPO, Assistant DPO, Privacy officer, Data Protection Consultant, …) is asked.
A good understanding of Information Risk Management and methodologies and an interest in Data Protection technologies and how they link to Data Privacy, are an important advantage.
Other requirements :
An ability to speak/write/understand Dutch OR French, AND English at a professional level will give you the needed flexibility to deal with national clients. Bilingual abilities (FR/NL) are of course a plus.
You’ve worked in a consulting mode for several clients at least a part of your career, which makes you familiar with the realities of a consultant.
You have business level communication skills:
o To make data protection concepts easy to understand by a business or a technical audience.
o To interact with C-level on a strategic level, to work with legal, GRC and IT services, to challenge technical implementations and to understand business needs.
An ability to understand senior management considerations (strategic level) and an ability to help them in their decision will ensure your credibility on customers’ project.
Mindset:
Agility: you are enthusiastic over getting to know different sectors, company environments and specific challenges, sometimes in parallel (strategic consulting mindset)
Excellence in every detail: You take pride in delivering high-quality work and always strive to exceed expectations.
Client-focused mindset: You understand your client’s objectives and provide thoughtful, tailored advice to help them succeed.
Team spirit: Cybersecurity is a team effort. You share knowledge, discuss trends, and support your teammates, knowing that collaboration makes everyone stronger.
Integrity above all: You handle sensitive information with the highest level of confidentiality and professionalism. Trust is at the core of everything you do.
Our offer
Join a dynamic and fast-growing company in a booming sector
Participate in the development of the company as a co-creator of innovative solutions
Develop your career path and add top-level trainings and certifications to your CV
Benefit from an attractive salary package, including a full range of benefits:
o Mobility budget you can use for a company car (electrical) or other green or shared mobility initiatives.
o Competitive group insurance including pension fund, death, and disability coverage,
o Attractive complementary insurances for non-work-related accident and loss of salary in case of sickness, company fully supported contribution
o 32 days holiday/year (on a fulltime equivalent basis)
o Flexible home working policy (2 days/week minimum at office)
o Other fringe benefits (meal vouchers, eco vouchers, …)
o Bonus based on your annual objectives
This position is also opened to long term and exclusive freelance collaboration
Enjoy some fun company events, exclusive team experiences
Contribute to a safer, fairer world for data subjects and citizens, ensure the serenity of great businesses and essential public institutions
Live your values daily in a dynamic, fun and multicultural working environment.