Share this job
Information Security Officer
Bruxelles, BRU
Apply for this job

Information Security Officer – NIS2


Industry: Energy & Utilities

Contract: Freelance – Time & Material

Duration: 12 months (extension possible)

Start: 01/04/2026 (earlier start possible)

Location: Hybrid – Max 2 days remote/week

Workload: Full-time (220 days)


We are looking for a hands-on Information Security Officer to join an Information Security team in a critical infrastructure environment.

You will be responsible for the operational management and continuous improvement of the ISMS (ISO 27001:2022), aligned with NIS2 requirements.

This is not a strategic or advisory role.

There is no GRC tool in place and none planned. The environment is manual, structured, and process-driven. The role requires strong operational governance experience.


Your Responsibilities

  • Manage and maintain the risk register and exception register
  • Handle Risk Acceptance Forms (RAFs) and follow up on risk treatment plans
  • Maintain and continuously improve ISMS processes
  • Draft, formalize, and validate security procedures and governance documentation
  • Manage non-conformities and corrective/preventive actions (CAPA)
  • Support internal audits and compliance reporting
  • Monitor access controls and recertification campaigns
  • Support backup verification, DRP, BCMS, and crisis management readiness
  • Contribute to ISMS management review preparation
  • Map NIS2 domains to ISO 27001:2022 controls
  • Support incident follow-up and integrate lessons learned into the ISMS


Mandatory Requirements

  • Minimum 3 years’ experience as Information Security Officer (Medior level)
  • ISO 27001 Lead Implementer certification (non-negotiable)
  • Proven operational ISMS management experience
  • Strong experience with:
  • Risk and exception registers
  • Non-conformity management
  • Governance documentation writing
  • Internal security controls and compliance reporting
  • Ability to translate security policies into practical procedures
  • Fluent in English
  • Fluent in French or Dutch with passive knowledge of the other


Candidate must:

  • Describe at least 2 concrete ISMS projects (role, responsibilities, deliverables)
  • Complete the required project template
  • Provide references (validated by Hiring Manager)


Nice to Have

  • Knowledge of ITSCM, DRP, BCMS, crisis management
  • Experience with SCADA / RTU environments
  • Knowledge of network security, IAM, Azure or AWS
  • Strong understanding of NIS2 and ISO 27001:2022 mapping


Apply for this job
Powered by