Virya Energy, founded in 2019 through a strategic partnership between Colruyt Group and its majority shareholder Korys, is a Belgian pioneer in sustainable energy solutions. We operate across the entire energy value chain, from renewable energy development in Europe and Asia to energy distribution via DATS 24. Our portfolio includes wind activities (formerly Eoly in Belgium and Eurowatt in France), solar projects, sustainable hydrogen, and strategic investments in specialized energy‑industry service providers such as GeoXYZ, DotOcean, and Marlinks.
Your role
Virya Energy is hiring an IT Security Officer to serve as the technical anchor of our security organization. In this role you will bridge strategy and execution as we grow into an NIS2 Essential entity.
Key Responsibilities
Primary technical advisor to the CISO, protecting IT, OT, and business teams.
Own and oversee day‑to‑day security operations and the external SOC partner.
Lend expertise to architectural decisions and cross‑functional projects.
Lead the technical implementation of NIS2 and ISO 27001 requirements.
Translate regulatory mandates into concrete technical controls and procedures.
Support the CISO in maintaining a technically enforceable security policy framework.
Act as Point‑of‑Contact for our external SOC MSSP, review SOC reports, validate alerts, and coordinate vulnerability remediation.
Coordinate internal incident response, ensuring seamless communication between SOC and IT teams.
Drive adoption of security controls across the organization.
Apply “Security by Design” principles to new IT projects, embedding security in development lifecycles and infrastructure services.
Review low‑level technical designs and advise on common cyber capabilities.
Act as liaison between the CISO office and business line ICT departments to deploy tools effectively.
Serve as the bridge between IT security and OT domains, ensuring IT measures do not disrupt energy production or grid operations.
Collaborate with engineers to maintain “Purdue Model” separation and secure remote access points; support alignment with OT standards such as IEC 62443.
Requirements
5–10 years of experience in Information Security.
Solid knowledge of security frameworks (NIST, ISO 27001) and NIS2 practical implications.
Fluent in English; proficiency in Dutch and/or French highly desirable.
Strong technical architecture understanding with expertise in Microsoft 365 Security & Compliance, Cloud Security, Network Security, and Endpoint Protection.
Nice to have: Familiarity with OT standards and/or experience in the Energy or Utilities sector.
Excellent communication skills for explaining complex risks to non‑technical stakeholders.
Vendor management experience, holding external partners accountable to SLAs and deliverables.
Pragmatic mindset balancing security with business agility.
Only candidates residing in Belgium with a valid residence and work permit will be considered.
Offer
Full‑time position with an open‑ended contract.
Green company car, meal vouchers, group insurance, and health care for you and your family.
Flexible workplace: homeworking up to 2‑3 days per week.
Our offices are currently located in Braine‑l'Alleud and will relocate to Halle in 2026.
We do not accept acquisition from recruitment agencies or any third parties. Unsolicited CVs or proposals will not be considered.
#J-18808-Ljbffr