NIS2 Specialist (GRC Consultant)

About the Role

We are looking for an experienced Governance Risk & Compliance (GRC) Consultant with deep expertise in EU regulatory frameworks as well as a NIS2 Specialist to strengthen our compliance and cybersecurity governance programs. You will play a key role in advising implementing and managing initiatives aligned with European security and compliance directives ensuring proper risk management practices across our organization.

Key Responsibilities

• Governance Risk & Compliance (GRC):

• • Lead and support security and compliance initiatives aligned with NIS2 requirements. Be key support person for the client in their NIS2 journey.

• • Conduct risk assessments maturity evaluations and design internal control frameworks.

• • Provide strategic advice on governance structures compliance reporting and regulatory alignment.

• • Drive ISO 27001 implementation and act as an Information Security Officer (ISO) advisor where needed.

• • Support project and program management activities related to cybersecurity and compliance.

• NIS2 Directive Expertise:

• • Act as subject matter expert on NIS2 requirements advising on implementation and compliance strategies.

• • Conduct gap analyses against NIS2 design risk mitigation and reporting processes.

• • Train and guide stakeholders in understanding obligations under NIS2.

• Business development:

Drive business development initiatives regarding NIS2. Able to identify key opportunities and support pre-sale process. Proactive in this area.

Support RFOs RFPs when necessary.

Qualifications :

• Professional background:

• • Minimum 6-7 years of experience in Governance Risk & Compliance ideally in public and industry sectors.

• • Proven track record with information security frameworks particularly ISO 27001. Knowledge and experience with CyFun is necessary.

• • Hands-on experience as Information Security Officer (ISO role or advisory capacity) or ad minima as security manager in larger projects.

• • Strong project management background preferably in multinational environments.
  • Must have: ISO27001 certificate.
  • Nice to have: CISACISM any other ISO relevant certificate.

• Language skills:

• • Strong preference: English   either French or Dutch as you would be supporting Clients in Public/industry sector in Belgium.

• Soft skills:

• • Strong communication and stakeholder management skills.

• • Ability to interpret regulations into practical business-driven compliance processes.
  • Autonomous in delivery fast learner and excellent stakeholder management skills. Can position oneself as a person of trust easily with key stakeholders.
  • Possesses consulting mindset and hands-on attitude.
  • Positive person and a team player.

• • Analytical and structured approach to risk and compliance management.

Why Join Us

• Work in a strategic role at the forefront of EU cybersecurity and compliance.

• Engage with international teams and high-impact compliance programs.

• Opportunity to shape readiness for NIS2 implementation.

Additional Information :

Do you picture yourself in a fast-growing vibrant team at the cutting edge of software implementation Does working with international clients across multiple industries sound exciting Then youre in the right place. 

We offer a generous employee benefits package that includes: 

• A variety of perks such as mobility options (including a company car) insurance coverage meal vouchers eco-cheques and more. 
• Continuous learning opportunities through the Sopra Steria Academy to support your career development. 
• The opportunity to connect with fellow Sopra Steria colleagues at various team events. 

People are the cornerstone of our success. Thats why we aspire to be bolder together. Our goal is to build high-functioning teams and healthy team environments that inspire and help each other to deliver excellence for each of our customers.  

Excited about this job opportunity Ready to shape the world with us Great! We are looking forward to your application! 

Want to know what happens next  

The recruitment process typically begins with the first step where the recruiter screens candidates based on their qualifications and fit for the role. This is followed by the second step where candidates undergo more in-depth evaluations including technical assessments hiring manager or client to assess both technical skills and team compatibility. The third step involves the company reviewing feedback and aligning on a potential offer. Finally in the final step the candidate receives a formal job offer.  

Sopra Steria is an equal opportunity employer. All qualified applicants will be considered for employment without regard to age ancestry nationality color family or medical leave gender identity or expression genetic information immigration status marital status medical condition national origin physical or mental disability political affiliation protected veteran or military status race ethnicity religion gender (including pregnancy) sexual orientation or any other characteristic protected by applicable local laws regulations and ordinances. We foster a work environment that is inclusive and respectful of all differences.

Remote Work :

No

Employment Type :

Full-time