Head of Security & Privacy
Join Our Team!
Are you a #curious, #structured, and #committed cybersecurity and data privacy professional ready to make a real impact? We’re looking for someone with the expertise to secure our operations, drive our ISO 27001 journey, and support our clients with their regulatory and data protection challenges. If you're hands-on, eager to work in a consultative environment, and passionate about embedding security into business strategy, this role is for you!
As Head of Security & Privacy, you will play a key role in building our security posture, leading our certification journey, and delivering high-value advisory across internal and client-facing initiatives.
THIS ROLE IS NOT FOR YOU IF…
* You have never worked in a security, privacy, or risk management role.
* You’re not familiar with governance standards such as ISO 27001, GDPR, or DORA.
* You are not comfortable working autonomously or with a strategic planning mindset (#managementbyobjectives).
* You prefer purely operational IT roles rather than transversal collaboration.
* You do not share our #studentforlife philosophy, which values curiosity and continuous learning.
* You do not enjoy collaborating in a dynamic team environment.
IF THESE #BENEFITS RESONATE WITH YOU, KEEP READING!
* Flexibility That Fits Your Life: Take control of your priorities with a results-driven work model.
* Shape Your Career: Lead the strategic security roadmap of the company, with room to grow.
* Innovative Culture: Join a team that values trust, transparency, and meaningful impact.
* Rewarding Compensation: Enjoy a competitive and optimized package aligned with your contributions.
* Global Exposure: Work on impactful client projects in sectors subject to strict regulations (financial, healthcare, SaaS...).
DOES THIS SOUND LIKE YOU?
* Security & Compliance Expertise: You’ve led or contributed to ISO 27001 or similar compliance projects.
* Privacy Knowledge: You understand privacy regulations (GDPR, AI Act, NIS2, DORA...) and their operational implications.
* Project Leadership: You have experience managing cross-functional security-related projects.
* Certifications: You’re certified (or on your way to be) in ISO 27001, CIPP, CIPM, CISSP, CISM, or equivalent.
* Analytical & Methodical: You know how to structure complex problems and create clear frameworks.
* Client-Facing Confidence: You can collaborate with internal teams and clients on security initiatives.
* Team Player: You work well with delivery, legal, tech and business teams alike.
* Languages: Fluent in English; French and/or Dutch are strong assets.
* Strategic Mindset: You understand the “big picture” and translate compliance into concrete, actionable steps.
* Entrepreneurial Spirit: You bring structure where needed, but stay agile in a fast-evolving context.
* Results-Driven: You focus on achieving security maturity with measurable progress.
* Tech-Savvy: You understand modern cloud platforms, ideally with experience in Salesforce, Mulesoft, AWS, Informatica, or Snowflake.
YOUR ROLE & RESPONSIBILITIES
As Head of Security & Privacy, you will be accountable for defining, maintaining, and updating our company’s objectives and posture in the domains of security and privacy, in close collaboration with the senior management team.
In your first year, your focus will be:
* 50% internal mission: leading the preparation for ISO 27001 certification (target: 2026), designing policies, raising awareness, and coordinating cross-team implementation.
* 50% client-facing: contributing to security or privacy-related projects, RFPs, or regulatory initiatives (DORA, GDPR, NIS2, AI Act...).
Your key responsibilities include:
* Security Roadmap: Design and lead the security & privacy roadmap aligned with ISO 27001, GDPR, and business goals.
* ISO 27001 Readiness: Drive all preparation activities to ensure the company achieves certification by 2026.
* Cross-Functional Enablement: Collaborate with management, marketing, delivery, tech and HR to embed security into operations.
* Policy & Documentation Management: Ensure policies, reference documentation and checklists are kept up to date with insights from standards, RFPs, projects and sales feedback.
* Internal Awareness: Build a security-first mindset across the company with training sessions, onboarding, and awareness campaigns.
* Client Support & Advocacy: Support delivery teams in showcasing our security posture to clients, and address client concerns with professionalism.
* DPO Support: Act as or collaborate closely with the Data Protection Officer.
* Security-by-Design Advisory: Help teams integrate privacy and security into project delivery and client solutions.
* Tooling & Monitoring: Recommend and implement appropriate access, monitoring, and risk management tools.
* Certification/Regulatory Watch: Monitor changes in applicable standards and regulations and ensure proactive compliance.
* Team Enablement: Train designated team members in specific sub-domains and develop a “cyber academy” with regular training programs.
* External Representation: Serve as point of contact for security and privacy matters with platform vendors (e.g., Salesforce, Mulesoft) and regulatory bodies.
* Ecosystem Development: Develop partnerships and extend our offerings in security & privacy (e.g., audits, penetration testing, certifications).
* Supplier Oversight: Ensure suppliers and contractors align with our security posture.
Why Join asUgo?
Are you driven by the desire to shape the future of secure and ethical digital transformation? Do you thrive in a values-driven environment where your expertise is trusted and your opinion valued?
At asUgo, we offer you the opportunity to be part of a dynamic, inclusive, and forward-thinking company that empowers you to grow, innovate, and make a difference.
Apply Now
If you’re ready to challenge yourself, protect what matters, and lead change at scale—we want to hear from you.
Apply today to help us build a safer digital future!