Position

ISMS Manager

Werkgever

Systems security and network provider

Werkgever details

Our client is a well known systems security and network provider. They plays a strategic role in enabling secure and high-performance connectivity, cloud solutions, and cybersecurity frameworks.

They are located near central station in Brussels. 

They want to hire a ISMS Manager, responsible for the development, implementation, maintenance, and continuous improvement of the organization’s Information Security Management System (ISMS) in accordance with the ISO/IEC 27001:2022 standard. Reporting to the Chief Information Security Officer (CISO), the ISMS Manager acts as a key advisor and operational sounding board for all matters related to information security governance.

Functieomschrijving

  • Achieve the objectives defined in the ISMS policy aligned with ISO/IEC 27001:2022.
  • Coordinate and perform risk assessments, vulnerability audits, and security reviews using an ISO 27005-based methodology.
  • Develop, maintain, and improve ISMS frameworks, documentation, policies, and procedures.
  • Support the CISO in:
    • Developing and implementing security strategies, objectives, roadmaps, and awareness programs.
    • Preparing for and participating in management meetings on security policy.
    • Securing necessary resources to operate the ISMS effectively.
  • Collaborate with the Information Security Manager (ISM) on security budgeting and resource planning.
  • Assist operational teams in creating and maintaining risk treatment plans and implementing security controls.
  • Support departments in identifying and managing information security risks.
  • Monitor and report on the effectiveness of risk mitigation measures.
  • Oversee implementation of corrective actions following audits or security incidents.
  • Capture and document information security requirements and expectations from relevant stakeholders; contribute to ongoing process improvement and IAM documentation.
  • Foster internal relationships to ensure understanding and adoption of security policies.
  • Stay informed about emerging threats, vulnerabilities, best practices, and regulatory developments; propose ISMS enhancements accordingly.
  • Support compliance audits and reporting for ISO 27001, SOC 2, HIPAA, GDPR, and other relevant regulations.

Vereiste ervaring

Educational Background

  • Master’s degree in information security, cybersecurity, or computer science with at least 6 years of experience in at least two of the following areas:
    • Direct responsibility for ISMS or ISO 27001 implementations
    • Security frameworks, risk management, and regulatory compliance
    • Incident response and security auditing

OR

  • Bachelor’s degree in the same fields with at least 9 years of experience in two of the three areas above.

Technical and Core Competencies

  • Deep understanding of ISMS and ISO 27001 standards.
  • Expertise in risk assessment and management.
  • Familiarity with Governance, Risk, and Compliance (GRC) practices.
  • Strong project management and organizational skills.
  • Excellent communication and analytical skills; ability to explain complex security topics to technical and non-technical stakeholders.
  • Strong documentation and process management capabilities.
  • Proactive, detail-oriented, and able to manage multiple priorities.
  • Commitment to continuous improvement.

Assets

  • Professional certifications such as ISO 27001 Lead Implementer/Auditor, CISSP, CISM, or equivalent.
  • Native Dutch OR French speaker with strong proficiency in the other language and English.

Aanbod

  • Stable 9-to-5 role in a dynamic and collaborative environment.
  • Ongoing training and development
  • Career opportunities
  • Hybrid work
  • Open and transparent communication culture supported by social events and team gatherings.
  • Excellent salary and benefits
  • Company laptop and mobile phone
Solliciteer
Belnet
Toyoda Gosei
Abbvie
Ingersoll Rand
Brussels Airlines
Ibm
Bt
Cisco
Comstor
Experis
Federale verzekering
Kapsch
Mediagenix
Mivb
Omninet
Sibelga