Key Responsibilities: The Medior Security Consultant will play a vital role in assisting the Information Security Team with the following tasks:
* Document Updates: Revise and update all documentation that is part of the Vo-ICR, ensuring it reflects the latest regulations, standards, and guidance.
* ICR Confluence Space Management: Maintain and update the ICR Confluence pages and spaces to ensure they align with the evolving framework.
* Gap Analysis: Conduct gap analyses to identify areas where the Vo-ICR may be out of compliance with emerging standards and regulations (e.g., NIS2, ISO27701).
* Workshops & Presentations: Prepare presentations and lead workshops (e.g., for change managers) and information sessions (e.g., Digital Flanders meetings) to communicate updates, changes, and best practices regarding the Vo-ICR.
* Tool Maintenance: Support the maintenance and updating of any tools and systems used within the ICR framework to ensure they remain effective and compliant.
* Other Optimization Tasks: Undertake additional tasks aimed at optimizing the Vo-ICR and ensuring its alignment with the broader information security strategy.
Deliverables:
* Updated documentation for all components of the Vo-ICR.
* Updated Confluence space/pages that clearly reflect the changes made to the ICR framework.
* Completed gap analyses, with recommendations for improving compliance with new regulations and standards.
* Presentations and materials for workshops and information sessions on ICR updates.
* Maintenance and updates to tools and systems associated with the ICR.
* Execution of other ICR optimization tasks as directed by the Information Security Team.
Required Skills & Qualifications:
* Proven 5 years of experience in security consulting with expertise in information security frameworks (ISO 27001/2, ISO27701, NIS2).
* Strong understanding of GDPR and its integration into security frameworks.
* Experience in gap analysis, identifying areas of non-compliance, and recommending corrective actions.
* Ability to create clear, concise presentations and lead workshops for a range of stakeholders.
* Proficiency in using documentation management tools, particularly Confluence.
* Strong analytical skills, attention to detail, and a proactive approach to solving security challenges.
* Excellent communication skills to liaise effectively with internal teams and external stakeholders.
* Fluent in Dutch