* Maintain and enforce the security governance framework aligned with ISO 27001:2022.
* Manage ISMS documentation and oversee the full policy lifecycle.
* Ensure compliance with ISO 27001, NIS2, ISAE 3000, OPDE/MVS.
* Lead operational security: access control, monitoring, incident response, vulnerability follow-up.
* Manage supplier and data-center security requirements.
* Support SOC development and security monitoring processes.
* Coordinate BCM/DR planning and testing.
* Prepare audits and implement corrective actions.
* Provide regular security reports to management and committees.
* Proven expertise in ISO 27001:2022, NIS2 and audit frameworks.
* Strong experience in operational security and risk management.
* Familiarity with supplier security and hosting/data-center controls.
* Skilled in vulnerability assessment and remediation.
* Proficient with SharePoint Online.
* Experience in multi-supplier, documentation-heavy environments.
* Relevant cybersecurity certifications + minimum 5 years' security leadership experience.
* Fluent in English.
* Full-time engagement (1 year contract, time & material) with a strategic role.
* Predominantly remote work, with occasional travel across Europe for alignment or presentation.
* Competitive daily rate + travel expense reimbursement.
* Exposure: you'll present to senior management, audit committees, and external stakeholders.
* Opportunity to contribute to business continuity planning and mature ISMS in a regulated environment.