We are looking for a Security Architect (m/v/x) for a client in Brussels.
* Position can be filled with either a permanent (bediendestatuut) or freelance contract.
* Duration: Long-term.
The Security Architect translates the strategic guidelines of the CISO into concrete and robust technical solutions. The Security Architect ensures consistency, compliance with regulations (NIS2, GDPR, ISO 27001, IEC 62443…) and the effectiveness of security measures within the entire organization, particularly in the context of critical services and vital infrastructures. The Architect contributes to an integrated security architecture that covers IT, OT, cloud, and network environments, using Archimate models and functional frameworks such as CyFun and ISO 27001 to ensure traceability and governance of security capabilities, thereby safeguarding resilience and business continuity.
Key activities:
* Security Architecture
o Design, formalise, and evolve the target security architecture, integrating requirements from the early design phase of projects (Security by Design, Privacy by Design).
o Define standards, models and principles for security architecture in line with the strategic direction of the organization.
o Integrate critical security domains (network, cloud, IT/OT/IoT, ICAM, data, cryptography, etc.) into a coherent and modular vision.
o Lead or contribute to security intake processes and architecture committees to ensure alignment of solutions with the target architecture.
* Risk Management
o Conduct technical and architectural risk analyses on projects, infrastructures, business applications, supporting applications and industrial systems.
o Identify threats, vulnerabilities and attack scenarios, and recommend appropriate mitigating measures.
o Maintain a consolidated and up‑to‑date risk picture across various domains, including ERP systems (SAP), IT/OT/IoT environments, the use of artificial intelligence, access management and inter‑application data flows.
* Standards, Compliance and Governance
o Contribute to the drafting and updating of technical security standards, ensuring compliance with legal requirements and reference frameworks (CyFun, ISO 27001, IEC 62443, NIST, NIS2, GDPR, etc.).
o Participate in security governance committees to steer technical decisions.
o Ensure consistency of architecture principles with internal standards and preserve traceability of decisions.
o Participate in coordination with competent authorities as needed.
* Support and Advice
o Support project, IT, OT and business teams in integrating security requirements, also in complex contexts (SAP integration, IT/OT convergence, cloud solutions, access management).
o Provide support during design phases, solution analyses or procurement processes (RFI/RFP).
o Ensure alignment of critical architectural components (ICAM, detection and response solutions, cryptography, etc.) with overall security objectives and the IT roadmap.
* Continuous Improvement, Security and Technology
o Follow evolutions in threats, technologies, regulations and governance models, and identify innovation opportunities.
o Propose continuous improvements to strengthen the security posture, including detection and response, logging, resilience and identity management.
o Promote modelling, reusability and consistency of architectural components.
* Qualifications
o Bachelor in Cybersecurity, Computer Science or a related field; Master strongly recommended.
o Minimum 5 years of experience in a similar role within complex hybrid environments (IT, OT, IoT, Cloud, ERP).
o Strong knowledge of regulations, standards and frameworks: CyFun, ISO 27001, NIST, IEC 62443, NIS2, GDPR, CIS Controls, etc.
o Ability to develop and maintain security processes, policies and standards in line with business objectives and regulations.
o Broad technical expertise in several of the following domains:
+ Network architecture, segmentation, Zero Trust models and Cloud Security
+ Secure SAP integration
+ ICAM (IAM, IGA, PAM, federation, provisioning, physical/logical access control)
+ Cryptography (PKI, key management, strong authentication)
+ XDR, SIEM, monitoring and auditing
+ Secure application of artificial intelligence and generative models
+ Proficiency in architecture modelling tools and languages (e.g., Archimate)
o Certifications
+ Strongly recommended: CISSP
+ Other valued certifications: CISM, CISA, ISO 27001 Lead Implementer, SABSA, or other recognised cybersecurity certifications.
Benefits
Your salary is based on scope, knowledge and competencies. We offer a motivating salary package including an attractive extralegal package with group and hospitalisation insurance, meal vouchers, eco vouchers, and an annual budget for the purchase of personal IT equipment. We also provide the option of a company car with a charging or fuel card.
#J-18808-Ljbffr