Cybersecurity Auditor

On site

Brussels, Belgium

Full Time

12-03-2025

Share this job:

Score my CV

Job Specifications

Your Job at a glance
Are you ready to make an impact providing cybersecurity audit insights that drive business success? Are you seeking a learning experience that offers a wide-ranging view of enterprise IT cybersecurity? Join Inspection Générale (IG) Hub Brussels & Factor and get a professional certification within 2 years, along with many career development opportunities !

And in detail
Inspection Générale (IG) Hub Brussels & Factor is an integral part of BNP Paribas IG and plays a vital role in the corporate governance of the BNP Paribas Group. You’ll join the IT audit team, working hand in hand with business audit to evaluate the effectiveness of governance, risk management, and control processes, and to recommend optimization solutions.
You’ll create value by:
Analyzing the IT organization, its processes and systems, assessing risks (especially cybersecurity and resilience risks), and evaluating internal controls
Crafting impactful audit findings and recommendations to boost IT and business success
Delivering assurance to senior IT management on top-notch internal control quality
Teaming up on exciting projects to help shape the future of the IG function.

As part of the IG Hub, you'll have extensive networking opportunities, connecting with diverse teams and individuals, fostering new career pathways within IT or across various functions within the bank. Additionally, you'll have the chance to conduct audits in different areas of the BNP Paribas Group, expanding your horizons even further.

Your talents and skills
You’re an enthusiastic team player with a natural curiosity and strong analytical and synthesis skills
You're eager to join a dynamic team of IT and business audit experts.
You have at least 4 to 5 years experience in the field of cybersecurity. Your expertise lies in either cybersecurity frameworks or key cybersecurity topics such as cryptography, cloud security or ethical hacking.
You hold a Master’s degree in IT or as a civil engineer
You’re fluent in English, both verbally and in writing. A good knowledge of French and or Dutch is a plus.

What we have to offer
A permanent contract and an attractive pay package.
You'll be working at our Brussels headquarters, just a short stroll from the railway station.
In addition to your remuneration and benefits (meal vouchers, insurance, holidays), we offer flexible salary options, allowing you to convert part of your salary into personalised benefits (phone use, IT equipment, transport, etc.).

Our impact
As a company, we implement concrete and sustainable solutions to reduce our environmental footprint, such as saving paper and resources, recycling our waste, encouraging the use of green transport, buildings that are designed and managed to limit our impact, etc.

Your prospects
The departments that make up BNP Paribas cover a wide range of activities. You will therefore have many opportunities for “horizontal” and “vertical” career development.

Let's share our values
At BNP Paribas Fortis, we surround ourselves with talented individuals, regardless of their gender or gender identity, age, origin, sexual orientation, disability… And to ensure equal opportunities for everyone, regardless of their personal or family obligations, our full-time job offers are also open to part-time, at 80 or 90%.

Ready to seize this opportunity?
We will make our first selection based on your CV and cover letter. We will contact you if your profile matches our offer.

Good luck!

If this role does not meet your expectations or fit your profile, feel free to share it with your network.

About the Company

At BNP Paribas Fortis, we strive to be a trusted financial companion for all our customers. No matter how big or small their dreams and challenges, we are there to help. As the go-to source for all things banking, our customers can count on us for reliable guidance. We are ready to help them make the right choices to achieve their goals. At BNP Paribas Fortis, we are ready for your world. Know more

Related Jobs

Company Name: TÜV AUSTRIA Belgium
Job Title: Cyber Security Project Lead
Job Description: What will you do? We are looking for an experienced Cybersecurity Project Leader to manage the successful delivery of national and international projects. In this diverse role, you will ensure that our top-tier cybersecurity services are delivered on time and to the highest standards. You will collaborate closely with clients and teams to turn challenges into success stories. Key responsibilities Project Management: Lead and manage cybersecurity projects from initiation to completion, both nationally and internationally. Coordination: Collaborate with cross-functional teams to complete projects within scope, budget, and deadlines. Client Liaison: Serve as the main point of contact for clients, providing regular updates and resolving issues. Quality Assurance: Ensure all projects comply with industry standards and regulatory requirements. Strategic Insights: Analyze market trends and provide valuable feedback for service improvements and future development. Who are you? At least 3 years of experience in project management, within a digital landscape, preferably in the cyber security field. Proven ability to manage complex projects involving cross-functional and remote teams. Exceptional organizational and leadership skills with attention to detail. Fluency in English and Dutch; French is a plus. Willingness to travel within Belgium, the Netherlands, and internationally. Why join us? At the forefront of innovation: we have developed our own innovation platform, Innovatüv, where you can submit ideas, participate in challenges and collaborate with colleagues from over the globe to drive continuous improvements. Intrapreneurship is highly encouraged! Think global, act local: we combine global expertise with local insights to deliver solutions that are both innovative and relevant. You will be part of a global network, yet your work will directly impact the local communities and industries we serve. Sustainability is deeply rooted in every aspect of our company: Your work will help companies reduce their ecological footprint and comply with important environmental standards and regulations. Our people, our most valued resource: as a people business, our success is built on the skills, dedication and innovation of our colleagues. We invest in our team because we understand that they are our greatest assets. Your growth, safety and wellbeing are our priority.

Company Name: Covestro
Job Title: Covestro Network and IT Security Engineer
Job Description: We are Covestro. We are curious. We are courageous. We are colorful. We refine chemical material solutions with game-changing products. Let us empower you to push boundaries. Join us and our 18.000 colleagues now and together we will make the world a brighter place. What Are Your Goals As our local IT security engineer/champion you will be responsible to protect IT systems and networks from potential threats, vulnerabilities, and attacks. This includes ensuring software and hardware are up to date, performing regular security audits, and responding to security incidents. You will ensure that the network and security measures adhere to relevant industry standards and legal regulations, such as GDPR, NIS2. Staying updated with the latest security threats, technologies, and best practices through continuous learning and professional development. In your role as network engineer you will contribute to the design of scalable and efficient network architectures that meet the organization's needs while considering security requirements. Creating robust and scalable network architectures that support an organization's operational needs while ensuring high performance, reliability, and security. Continuously monitoring network traffic and performance to detect anomalies, troubleshoot issues, and proactively address potential problems. Working closely with other (global) IT teams and departments to implement comprehensive security measures and integrate them seamlessly into the network environment What Would Be Your Responsibilities IT security responsible for the local organization in Belgium. Staying up to date about country specific legislations around IT security (e.g. NIS2, GDPR,…). Primary counterpart of the operational technology (OT) department for IT/OT security topics. Delivering a stable Network Security Service with maximum availability, using appropriate technology Delivering dedicated Site Service Networks for the local Chempark, tailored for site specific services for Covestro, other companies and 3rd parties on site. Managing IT related parts of large projects on the site. Local responsible of the IT infrastructure landscape. Accountable for the technical documentation and drawings of the IT infrastructure on the site, define documentation standards, assuring documentation is up-to-date, counterpart in case of inquiries by other departments. Subject matter expert (SME) for firewall infrastructure (IT/OT) on the site. Liaison for global network & network security team and global IT security. Integrate tools and procedures for maximal efficiency of available resources. Full responsibility for performing complex tasks in adequate quality. Follow and contribute to continuous improvement processes. Working with clients and vendors to design system enhancements. Ensure own knowledge about best practices and the current market solutions. Write appropriate documentation to support system design such as technical blueprints. What Experiences Would We Like You To Have Broad knowledge of IT technologies, IT and network security Professional experience in network and security concepts Current firewalling and intrusion detection / prevention technologies Profound knowledge of authentication and authorization protocols and technologies. CCNP level network security experience Profound knowledge of Microsoft Windows OS and Linux, database, scripting and programming tools for handling management systems and interface Ability to learn/use a wide variety of open-source technologies and tools Project Management skills 5 years of experience in a similar role Personal Skills Always acting to make the team succeed Outgoing, actively building useful relationships in the scope of the project Strong bias for action and ownership and a proactive and agile mindset Result driven, “make it happen” attitude Accurate way of working, you ensure that what you do is documented and communicated Ability to switch quickly between levels of abstractions (detailed view vs. system level view) A continuous improvement attitude, for both the development environment and the team’s own performance Comfortable working in a complex environment Dutch is your native language; you are proficient in English and knowledge of German is an asset What Really Would Tickle Our Fancy Latent desire and/or curiosity in related domains like state-of-the-art cloud technologies, artificial intelligence, zero trust architectures, and project management. YOUR APPLICATION Are you as curious, courageous and colorful as we are? If so, we can offer you an exciting career opportunity. We look forward to receiving your application including a cover letter, resume/CV, and relevant certificates. Become part of our Team - apply now! Contact Us werken@covestro.com Covestro welcomes applications from all individuals, regardless of racial or ethnic origin, skin color, nationality, religion, philosophy, gender, age, physical characteristics, marital status, disability, appearance, sexual orientation and sexual identity. We are committed to treating all applicants fairly and avoiding discrimination.

Company Name: Thales
Job Title: Regional Sales Manager Data Security
Job Description: Thales people architect identity management and data protection solutions at the heart of digital security. Business and governments rely on us to bring trust to the billons of digital interactions they have with people. Our technologies and services help banks exchange funds, people cross borders, energy become smarter and much more. More than 30,000 organizations already rely on us to verify the identities of people and things, grant access to digital services, analyze vast quantities of information and encrypt data to make the connected world more secure. Regional Sales Manager NL Primary Purpose of the Role: To plan, manage and grow all Thales CPL Enterprise business within the Netherlands with a focus on Data Protection (HSM’s, Data Encryption, and Key Management). Main verticals are Healthcare, Insurance, Government & Public, industry, Retail, The role includes the development of existing key business relationships) and managing the full sales cycle with the end customer within the assigned verticals. Focus will be on developing new logos within the designated territory / assigned named prospect accounts and cross & up selling within existing accounts. Therefore we are looking for a dynamic sales person who likes to work in small teams and takes responsibility and ownership of the business. As the Cybersecurity, business is expected to be one off the fastest growing business in the future there is a great potential for success. Key Responsibilities and Tasks: Plan and prioritize personal sales activities and customer/prospect contact towards maximizing sales and achieving agreed business aims - especially managing personal time and productivity Develop and leverage a high profile presence within pre-defined targeted accounts and verticals and establish strong long-term relationships/partnerships with key prospects and customers Investigate, generate, cultivate and manage high-value sales opportunities Plan and manage personal business portfolio according to an agreed market development strategy Manage product/service mix, pricing and margins according to agreed aims Maintain and develop existing and new customers through appropriate propositions and ethical sales methods, and relevant internal liaison to optimize quality of service, business growth, and customer satisfaction Use customer and prospect contact activities tools and systems, and maintain all relevant information held in these systems at all times Work with the local Marketing teams to develop marketing plans that will support the growth. A Hunter mentality with a focus on new business with both Greenfield customers and cross- and up-selling within the important existing customer base. Business planning resulting in maintaining and developing existing and new customers through planned individual account planning Attend online and on-site trainings and develop and maintain the relevant knowledge and skills Regular reporting and forecasting to Sales Director Benelux Qualifications: Educated to degree level with a business or IT related qualification. A proven track record of developing long term relationships and selling specialist hardware and software solutions, ideally in a security software /solutions environment. Knowledge of underlying security technologies Technically proficient in software and hardware IT/ IT Security/Crypto is a plus. Ability to communicate sales and marketing strategy Ability to articulate the Thales CPL and broader Thales message to a wide variety of audiences A proven structured approach / methodology to organize, manage and execute a detailed Sales Territory Plan Experience with SFDC as CRM solution is a bonus Fluent Dutch & English. Any other languages are an asset At Thales we provide CAREERS and not only jobs. With Thales employing 80,000 employees in 68 countries our mobility policy enables thousands of employees each year to develop their careers at home and abroad, in their existing areas of expertise or by branching out into new fields. Together we believe that embracing flexibility is a smarter way of working. Great journeys start here, apply now!

Company Name: Umicore
Job Title: IT Security Risk and Compliance Manager
Job Description: About Umicore Reducing harmful vehicle emissions. Giving new life to used metals. Powering the cars of the future. As a global materials and technology group, we apply our specialist knowledge to offer materials and solutions that are needed to everyday life. We strive to be a clear world leader in materials for clean mobility and recycling and have turned our sustainability approach into an even greater competitive advantage. With ambitions like this, imagine what you could do? About About our Business Supporting Functions (IT and others) A global organization. It’s not just those in our industrial sites and technical centres that are vital to Umicore’s growth. Across our business supporting functions we ensure that we continue to grow and evolve – whether it’s by making sure our decisions are commercially viable, enhancing our reputation, building new customer relationships or finding the right people who can build on what we’ve already achieved. The variety of our work means we cannot stand still. We need to find new ways to do things, discover new solutions and develop new ideas. Which is where you come in. What You Will Be Doing The IT Security Risk and Compliance Manager is responsible for driving on a daily basis the Umicore Information and Security Management System (ISMS) in compliance with the ISO/IEC 27001 standard. He/she ensures the quality and consistency of the Umicore ISMS, manages the different processes tracked within the ISMS and reports on the performance of the ISMS. In the context of the ISMS, the IT Security Risk and Compliance Manager is responsible for leading and maturing the risk management processes for IT/Information Security, as well as actively raising the adherence to the Umicore IT Security policy framework and initiating and leading the efforts needed to be compliant with IT Security standards as defined by our customers or regulatory instances. The IT Security Risk and Compliance Manager performs these roles in close collaboration with the CISO, the IT Security team and all operational and regional teams within the Information Systems department (IS), Corporate Security and other Corporate departments & SOF’s and Business ISMS Managers. The IT Security Risk and Compliance Manager can be located in Brussels or Hoboken and reports to the Senior Manager IT License & Asset - IT Process Improvement. Responsibilities Information Security Management System (ISMS) Drive the Umicore ISMS in compliance with the ISO/IEC 27001 standard, according to defined scope and objectives Define, supervise and contribute to recurrent ISMS activities: e.g. ISMS Activity Calendar Plan, prepare and conduct ISMS governance meetings on tactical level (ISMS Board) and operational level (ISMS Review) Monitor open actions: e.g. Gap Tracker and Risk Treatment Register Report on ISMS performance (e.g. ISMS Dashboard) and escalation matters to relevant governance bodies and obtain required outputs such as approvals, further escalations and actions to follow up. Define, drive and contribute to continual improvements Select and implement fit-for-purpose tools improving the effectiveness of the ISMS Define, manage and contribute to ISMS scope extensions in close collaboration with BU ISMS Managers Coordinate Internal and External Audit activities, and process outcome Communicate about the ISMS to relevant stakeholders across Umicore Act as sounding board for BU ISMS Managers Risk Management Organise, conduct or periodically review Risk Assessments according to the ISMS Risk Management Methodology and ensure strict consistency across the different Risk Assessments Support and challenge Risk Owners in identifying risks and defining risk treatment actions. Update and monitor the Risk Assessment files and the Risk Treatment Register and other documentation (e.g. evidences) Further mature the risk management processes on operational and tactical level for IT/Information Security , and s upport the CIO/CISO on strategic level Compliance Management Manage the IT Security policy framework Ensure IT Security policies reflect IT Security standards as defined by customers and regulatory instances Collect and propose potential policy amendments Align with relevant stakeholders about these changes and submit them for approval to the relevant governance bodies Lead the periodic review of IT Security policies Communicate about the IT Security policies and related updates Inspire the IS organization and beyond to strive to adhere to the IT Security policies. This includes raising security awareness where needed. Measure, analyse and report through (self-)assessments on the level of adherence to the IT Security Policies Support and challenge IT Asset Owners/Managers and Control Owners in identifying gaps and corrective actions as well as support them in designing and implementing adequate controls. Update and monitor the Gap Tracker including exceptions Fulfil IT security questionnaires on request of customers or business partners Contribute to assess the IT security posture of third parties Watch for and assess IT Security standards (e.g. NIS2, TISAX, …) and PII legislations (e.g. GDPR, PIPL, PIPA, …) and as a result initiate appropriate actions/projects to ensure compliance Who We Are Looking For You hold a Master degree You have at least: 10 years of experience in IT (Security) 5 years of experience in international and global organizations 5 years of management experience in a management position or as a senior project manager 3 years of experience in security risk assessments, risk management and security controls. You have strong analytical and reporting skills You have strong oral and written skills to translate complex risk requirements. You are disciplined and methodological in your way of working You have strong planning and coordination skills You have a mature personality with excellent interpersonal skills You are able to establish credibility with senior stakeholders You have good presentation skills You have knowledge and understanding of: IT (networking, infrastructure layer, application layer, etc.) and IT Security. IT (Security) operations and processes. You have strong knowledge and understanding of : Information Security standards (e.g. ISO 27001, TISAX) PII legislations (e.g. GDPR) Risk Management frameworks MS office products You are fluent in writing and speaking in English You obtained professional certifications such as ISO27001 Lead Implementer, CISM, CRISC , or equivalent. You keep yourself up-to-date on latest cyber and information security trends and threats What We Offer We aim to lead the way. Not just for our customers, but for our employees too. That is why we strive to create a collaborative environment in which we can all succeed, and a culture through which we can all share ideas, develop our expertise and advance our careers. As you would expect from a world-leading organization, we will also reward your contribution with a compe...