Overview:
Are you ready to make an impact in the world of Information Security, with a focus on GRC projects? Join BDO as a Information Security GRC Consultant and empower organizations to develop robust control programs that not only meet compliance requirements but also enhance their security posture. Be part of a warm, personal, and pragmatic team that makes a real impact in the industry.
What will you be doing?:
As an Information Security GRC Consultant at BDO, you will play a pivotal role in delivering value to our clients and shaping the future of their information security strategies. Here’s what your day could look like:
-
Lead maturity assessments of GRC programs and deliver actionable insights that drive real change.
-
Design and implement comprehensive GRC strategies that align information security practices with business objectives and industry best practices.
-
Develop and execute policies, procedures, and controls to manage IT and information security risks.
-
Establish and monitor robust IT and information security risk management programs, including periodic risk assessments, incident tracking, and reporting.
-
Oversee third-party risk management initiatives to ensure that vendors and partners meet security and compliance standards.
-
Set up security awareness campaigns
-
Monitor cyber regulations like DORA and NIS2 to understand their impact on our customers.
-
Collaborate on strategic exercises that help our clients elevate their GRC maturity and develop robust information security roadmaps.
What do you bring to the table?:
- Master’s Degree in a relevant field and 3-5 years of relevant experience.
-
Excellent command in French or Dutch and fluency in English.
-
Passionate about Information Security and willing to create and develop GRC frameworks.
-
Familiar with Security Standards, including NIST CSF, NIST 800-53, and ISO 27001.
-
Experience with GRC Tools and other technologies that support GRC initiatives.
-
Technical background in IT infrastructure, networking, and cloud environments (e.g., Azure, AWS, Google Cloud) is an asset.
-
Able to translate complex risks into clear, actionable plans.
-
Excellent communication skills with experience presenting to stakeholders at all levels, fostering solid client relationships.
-
Willing to Pursue Certifications such as CISSP, CISM, CISA, or ISO 27001
What do we bring to the table? :
- Culture: you will join a team of experts who encourage respect, diversity and teamwork.
-
Development: you decide the direction of your career, and we support you where necessary.
-
Impact: from day 1 you will be given responsibility, with support from your team.
-
Growth: you get access to a whole range of training courses through our BDO Academy.
-
Network: you can work on different projects and clients, across business practices.
-
Flexibility: you choose where you work with flexible working hours.
-
Wellbeing: your physical and mental health is important to us.
-
Proximity: you work in an open culture, so feel free to speak to anyone, at any level.
-
Salary: you receive a competitive salary package with interesting benefits.
-
Sustainability: you work within a company with an integrated sustainability policy.
Ready to elevate your consulting career as an Information Security Consultant GRC at BDO? Apply now and let's grow together!
