Job description
Security Engineer – Information Security & Risk 3 years experience
Location: Hybrid Brussells
Contract: Freelance One Year
About the Role
You’ll be joining the Information Security & Risk (IS&R) function within IT, with a mission to:
1. Transform security into a strategic enabler of innovation and customer trust
2. Integrate “secure by design” principles from the earliest stages of product and service development
3. Embed security as part of the company’s culture and day-to-day practices
4. Validate and continuously improve the security posture of IT services and solutions
As part of a collaborative and multidisciplinary team, you will play a key role in supporting the implementation of IS&R standards, raising awareness, and ensuring that security and risk practices are fully aligned with business objectives.
Key Responsibilities
5. Support the implementation of Information Security & Risk (IS&R) processes and standards
6. Promote and coordinate Information Security and Risk Management practices across IT squads
7. Drive and coordinate awareness initiatives within IT
8. Collaborate closely with IT teams to align projects with security principles
9. Build strong stakeholder relationships and monitor access and controls across IT squads
10. Report regularly on risks, issues, and corrective actions to IT BISO leadership
11. Act as coordination point to ensure completeness of the application referential for information assets
12. Document security procedures and processes, ensuring consistency and clarity
13. Monitor and report on recurrent security tasks, including:
Control plan execution
Patch management dashboards
Security configuration tracking
Internal quality control execution
Exception management (logical access)
What You Bring
14. A minimum of 3 years’ experience in a transversal IT or security-related role, ideally in information security, IT risk, or compliance
15. Strong interest in the Information Security Office domain, with the ability to explain its purpose and value
16. Familiarity with infrastructure, systems, and processes (hardware, OS, networks, etc.)
17. Strong stakeholder management and communication skills
18. Understanding of security processes, procedures, and governance requirements
19. Strong problem-solving mindset, curiosity, and ability to work in an Agile environment
20. Excellent English (knowledge of Dutch or French is a plus)
21. Resilience under pressure and a continuous improvement mindset
Bonus Skills (not required, but highly valued):
22. Risk awareness and incident management experience
23. Exposure to business intelligence tools
24. Strong Microsoft Office skills)
25. Experience with Microsoft Power Apps
26. Visio for process documentation
27. Knowledge of automation and process improvement