For our client in Charleroi we are looking for a Support Engineer, see the details below. Don't hesitate to contact me if you're interested. Longterm project Hybrid - 2 days onsite/week Information Security GRC specialist Mission context As part of its activities, our client is seeking an operational specialist in Information Security Governance, Risk, and Compliance (GRC) to strengthen the Information Security Office. You will join the Governance, Risk, and Compliance team, responsible for ensuring adherence to security standards, processes, and the overall information security governance framework. Main responsibilities As a GRC Specialist, you will be responsible for: Exception management & compliance Ensuring the follow‑up and continuous improvement of the security exception management process Tracking compliance deviations related to security governance policies and standards Managing and monitoring risk treatment mitigation measures originating from risk analyses (EBIOS Risk Manager) Following up on recommendations and remediation actions stemming from: penetration tests configuration audits internal or external compliance audits Reporting & governance oversight Producing KPIs and dashboards related to security exceptions for management reporting Secondary responsibilities Managing the team's mailbox, ensuring efficient daily follow‑up Managing the publication and updates of governance documents Contributing to the handling of security questionnaires for suppliers Required profile Essential skills (must‑have) 5 years of experience in information security, including at least 3 years in GRC Excellent command of spoken and written French (C2 level) Strong organizational skills with a methodical and structured approach Autonomy, proactivity, and a strong sense of responsibility Excellent communication skills and ability to work effectively in a team Good understanding of ISO 27001 Nice‑to‑have skills Knowledge of Risk Management (preferably EBIOS Rm) General understanding of security technologies (Antivirus, Firewalls, etc.) Experience in Operational Security Participation in or contribution to an ISO 27001 certification project Soft skills Strong sense of rigor and confidentiality Results‑oriented mindset Ability to explain security concepts to non‑technical stakeholders Adaptability in complex or regulated environments