Roles & Responsibilities:
* You analyze complex enterprise information security programs and infrastructure in both the public and private sectors.
* You assist with assessments of clients’ IT and security processes, risks, controls, and compliance against leading practices, industry standards, and/or client frameworks. You assess capability and maturity, identify gaps in design and execution, and communicate issues and recommendations to engagement leads and client senior management.
* You work with client senior management to develop a cybersecurity improvement strategy and roadmap to enhance maturity and reduce risk.
* You work with client senior management to assess, design, and implement sustainable solutions, including GRC tools, operating processes, and people models, to address key and evolving risks.
* You serve as the interface between client executives and hands-on technology practitioners, driving meaningful strategic change in the areas of information protection, data security and privacy, security operations, and business continuity.
* You articulate the business risks of technical vulnerabilities and communicate findings to client personnel.
* You assist clients in developing cybersecurity procedures and processes that align with leading practices.
* You analyze cybersecurity incident response capabilities, playbooks, and documentation, working with client staff to implement sustainable improvements. You facilitate tabletop exercises and collaborate with client staff to develop a remediation and improvement plan.
#Advisory
#Technology
#DigitalRiskManagement
#Cyber
#CyberStrategy
#DigitalRisk
Skills & Qualifications:
* You have a master's degree.
* You have a minimum of three years of experience in the field of cybersecurity and information risk management.
* You have working knowledge of leading frameworks such as ISO 27001, NIST Cybersecurity Framework (CSF), NIST 800-53, CIS, and the Cybersecurity Maturity Model.
* You have experience in writing policies, procedures, and controls in one or more standards/frameworks.
* You are open and honest about your successes and failures, recognizing that learning is an important part of our job.
* You have an entrepreneurial mindset and enjoy working on projects end-to-end.
* You are fluent in English and either Dutch or French.
* Cybersecurity-related certifications (e.g., CISSP, CEH, CISM, CISA, GIAC, GSEC) are a plus.
* ISO-certified lead auditing experience is preferred.
* You have excellent written and verbal communication, facilitation, leadership, and presentation skills.
As a certified Top Employer we offer:
* An international corporate culture in which personal growth, mutual trust and lifelong learning are being fostered.
* A competitive and attractive compensation package and a great number of extra-legal advantages (Company car + fuel card, IPhone/IPad, group & hospitalization insurance, Allowances,…) which are customizable with our Reflex@KPMG plan.
* Career development opportunities combined with trainings based on your personal needs and ambitions. Flexible, hybrid work arrangements to enable working from wherever you are.
* A team of passionate colleagues to reach higher goals and support eachother.
* A buddy and performance manager to support and assist you through your first months at KPMG.
* Great teambuilding, sport & wellbeing initiatives through our Together@KPMG program.
* An inclusive workspace that encourages diversity and pursues mutual respect for each other’s beliefs and backgrounds.