Overview
We are looking for an experienced CISOaaS Consultant to support subsidiaries of a large financial institution in strengthening their cybersecurity posture. The role focuses on cybersecurity risk assessment, strategic roadmap development, regulatory compliance, and hands-on security governance. The consultant will work closely with senior management and multiple stakeholders to ensure security initiatives are clearly defined, prioritized, and effectively executed.
Key Responsibilities
* Assess and raise awareness of the organization's cybersecurity risk posture.
* Support subsidiaries in developing multi-year cybersecurity strategies and roadmaps aligned with group standards and Belgian/EU regulations (e.g., DORA).
* Provide expert advice on cyber risks, remediation priorities, and security investments.
* Translate complex regulatory and security requirements into pragmatic and actionable implementation plans.
* Monitor remediation progress, track action items, identify blockers, and support resolution.
* Facilitate collaboration between internal departments, group stakeholders, and third-party service providers.
* Prepare concise, high-quality deliverables and communication materials for senior management.
Required Experience
* Proven experience designing and implementing enterprise cybersecurity programs in regulated environments.
* Strong knowledge of EU cybersecurity regulations (DORA, NIS2, EBA/ECB guidelines).
* Experience with international frameworks such as ISO 27001 and NIST CSF.
* Strong analytical capabilities with the ability to map regulatory requirements to security controls and measures.
Technical Knowledge (Preferred)
* Cloud security architectures (AWS / Azure).
* Identity & Access Management (IAM) frameworks.
* SIEM / EDR implementation and threat intelligence integration.
* Network security fundamentals, vulnerability management, and patch management.
Education & Certifications
* Master's degree or equivalent experience.
* Relevant certifications such as CISSP, CISA, or CRISC are required.
* Cloud security certifications (e.g., CCSP, AWS/Azure Security) are considered a plus
Languages
* French – Fluent
* Dutch – Fluent
* English – Fluent
If you meet with the requirement, apply or send an email to: Busra.Dogu@templeton-recruitment.com