Information Security Consultant
Belgium - Brussels
Capco
Capco is a global management and technology consultancy dedicated to the financial services and energy industries.Capco – The Future. Now.
Capco is a distinctly and positively different place to work. Much more than consultants, we are active participants in the global financial services industry. Our passionate business and technology professionals enjoy a unique environment where they are actively encouraged to apply intellect, innovation, experience and teamwork. We are dedicated to fully supporting our clients as they respond to challenges and opportunities in: Banking, Capital Markets, Finance Risk & Compliance, Insurance, and Wealth and Investment Management. Experience Capco for yourself at capco.com
Let’s Talk About You
Are you passionate about taking ownership of your career journey? Do you thrive on challenges and seek rewarding experiences? If so, we invite you to explore the exciting opportunity to become a valued member of our team as a Capco Information Security Consultant
Let’s Get Down To Business
We are looking for an Information Security Consultant to join our ICT risk team.
- Commit to following objectives: enable the extended enterprise, counter cybercrime, protect information systems (on-prem/cloud) and manage information security risks
- Develop and conduct information security audits (gap analysis, maturity analysis) and risk assessments (at process, information system, data, cloud and cybersecurity levels)
- Develop and conduct threat analysis, identify and prioritize threats, execute threat modelling, identify counter-measures (existing or missing ones), operate and populate a threat knowledge management tool, …
- Commit to a Data Privacy Impact Assessments (DPIA)
- Commit to a pentesting and analyze the results
- Responsible for the development and implementation of global security policy (strategic and tactical), standards and guidelines on information security for various industries
- Organise the interaction with teams in and outside your domain. You align stakeholders within all levels of the organisation, from CIO to engineers and from product owners to internal users
- Elaborate and follow-up a corrective action plan
- Enable sound and formal information security risk decision making by management
- Generate reports and share necessary information with appropriate stakeholders
- Collect and share with the clients - and CAPCO - cyber threat intelligence information/data
- Maintain core security controls by using threat intelligence data to adapt posture to threats
- Coordinate and advise in the event of security incidents and, if necessary, take action in the event of calamities.
- Establish and initiate information security awareness programs and advise on information and training of users in the correct handling of information (systems).
Show Us What You’ve Got
It will be very useful if you have some or all the following skills and experience:
- 3 - 8 years of experience and expertise within the domain of Information or Cyber Security
- Strong interest in all fields of information security (legal/compliance, technical/ICT and business/human
- Being able to work and liaise with various stakeholders, ranging from very technical to very non-technical
- Preference for transversal and coordinating roles
- Excellent analytical, reporting and presentation skills
- Fluency in English and French or Dutch
- Knowledge of, experience with security standards e.g.: DORA, ISO 27k-series, 22301, CSA, NIST, PCI DSS
- Knowledge of applicable legal & regulatory frameworks, local & European, general & industry-specific
- Experience with governance frameworks, ISMS, implementing guidelines & policies, training & awareness
- Experience with IAM, BCP/DPR, cryptography, anonymization techniques, privacy & risk assessments, audits
- Qualifications, certifications pertinent to Information or Cyber Security
- Concrete experience, qualifications, certifications as a project manager, process manager or business analyst
We value your professional experience, but what truly matters is that you share our passion for innovative ideas that put our clients at the forefront in a challenging market. Right from the start, your most important skill will be your ability to see fresh perspectives and find smarter ways of doing things, all to give our clients that extra edge they deserve.
Now Take the Next Step
If this sounds like you, we would love to hear from you
What do we offer:
- An attractive remuneration package, reflecting your experience, including a company car or a green mobility budget, net allowances, end-of-year bonuses, health insurance, a mobile phone and subscription, laptop and meal vouchers
- Organised individual learning tracks with access to leading online skills development platforms, to onsite and online teachers and to our global experts
- A hybrid (on-site/remote) work environment
- A shared objective to achieve a good work-life balance
- A flat, non-hierarchical structure that will enable you to work with senior partners and directly with clients
- A diverse, inclusive, meritocratic culture
#LI-JV1
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Audits Banking Cloud Compliance Cryptography Cyber crime Finance Governance IAM ISMS ISO 27000 NIST PCI DSS Pentesting Privacy Risk assessment Threat intelligence
Perks/benefits: Career development Flat hierarchy Startup environment
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.