IT Security GRC Consultant

Are you ready to make an impact in the world of Information Security, with a focus on GRC projects? Join BDO as a IT Security GRC Consultant and empower organizations to develop robust control programs that not only meet compliance requirements but also enhance their security posture. Be part of a warm, personal, and pragmatic team that makes a real impact in the industry. 

As an IT Security GRC Consultant at BDO, you will play a pivotal role in delivering value to our clients and shaping the future of their information security strategies. Here’s what your day could look like:

• Lead maturity assessments of GRC programs and deliver actionable insights that drive real change.
• Design and implement comprehensive GRC strategies that align information security practices with business objectives and industry best practices.
• Develop and execute policies, procedures, and controls to manage IT and information security risks.
• Establish and monitor robust IT and information security risk management programs, including periodic risk assessments, incident tracking, and reporting.
• Oversee third-party risk management initiatives to ensure that vendors and partners meet security and compliance standards.
• Set up security awareness campaigns
• Monitor cyber regulations like DORA and NIS2 to understand their impact on our customers.
• Collaborate on strategic exercises that help our clients elevate their GRC maturity and develop robust information security roadmaps.

• Master’s Degree in a relevant field or 3-5 years of relevant experience.
• Excellent command in French or Dutch and fluency in English.
• Passionate about Information Security and willing to create and develop GRC frameworks.
• Familiar with Security Standards, including NIST CSF, NIST 800-53, and ISO 27001.
• Experience with GRC Tools and other technologies that support GRC initiatives.
• Technical background in IT infrastructure, networking, and cloud environments (e.g., Azure, AWS, Google Cloud) is an asset.
• Able to translate complex risks into clear, actionable plans.
• Excellent communication skills with experience presenting to stakeholders at all levels, fostering solid client relationships.
• Willing to Pursue Certifications such as CISSP, CISM, CISA, or ISO 27001

• Culture: you will join a team of experts who encourage respect, diversity and teamwork.
• Development: you decide the direction of your career, and we support you where necessary.
• Impact: from day 1 you will be given responsibility, with support from your team.
• Growth: you get access to a whole range of training courses through our BDO Academy.
• Network: you can work on different projects and clients, across business practices.
• Flexibility: you choose where you work with flexible working hours.
• Wellbeing: your physical and mental health is important to us.
• Proximity: you work in an open culture, so feel free to speak to anyone, at any level.
• Salary: you receive a competitive salary package with interesting benefits.
• Sustainability: you work within a company with an integrated sustainability policy.

Ready to elevate your consulting career as an Information Security Consultant GRC at BDO? Apply now and let's grow together!