Requirements
Must have:
- 5-10 years of proven experience conducting security risk assessments - Hands-on experience contributing to the design of security processes, frameworks, or security solutions - Solid understanding of cybersecurity frameworks (e.g. ISO 27001, CIS, NIST, and DORA) and threat/risk frameworks (e.g. MITRE, EBIOS) - Good knowledge of financial IT security regulatory requirements: DORA, ESMA, etc. - Practical understanding of how Information security controls must be implemented - Experience in defining or applying security requirements on Microsoft Azure, IBM Mainframe, Microsoft Windows platforms is a plus - Fluency in English - Previous experience in the financial sector - Knowledge of financial markets, FMIs, and CSD operations is an advantage - Experience with tools like ServiceNow, Excel, and basic security testing platforms - Experience with ServiceNow GRC is an advantage - Certification such as CISSP, CSSLP, CCSP, CISM, CISMP, GCIH, CEH, etc. is an advantage - Strong communication and coordination skills - Proactive and self-motivated - Strong analytical capabilities combined with creative problem-solving skills - Structured and synthetic approach - Calm, organized, and efficient under pressure - Collaborative mindset - Autonomous and well-organized
Responsibilities:
- Contribute to the design of an application security risk assessment framework - Participate in designing the data model supporting security assessment activities - Build standard reporting templates - Organize documentation and track activities - Execute security assessments - Analyze the business context, technical architecture, and supporting components of applications - Identify relevant threats, risk scenarios, and appropriate security controls - Detect security gaps and provide practical recommendations - Produce detailed reports outlining risks, observations, and recommended security measures - Collaborate with internal stakeholders to validate findings and support remediation plans
Company:
We are a dynamic team located in Brussels, offering flexible working arrangements, including remote work options. Our focus is on transforming IT Risk and enhancing application security risk assessment processes across diverse business functions. We value proactive, driven individuals who thrive in a collaborative environment and are open to tackling varied challenges within the financial sector.