Cybersecurity

Expanding steadily since its launch in 2003, the ACENSI group is an IT consultancy firm, well known for their technical and functional know-how, who specialize in Telecommunications, Financial Markets, as well as in the Energy industry. ACENSI guides businesses in evolutionary IT projects from the initial strategies through to their realization (Project Management, Business Define, Design, Implementation and Infrastructure). From its original focus on technical engineering and Business Analysis, ACENSI has developed new areas of expertise in Digital Application, Business Intelligence, Big Data, ...

ACENSI BELGIUM is looking for his client a Cybersecurity Consultant(F/M/X)

Mission context

Our client is launching a program to become compliant with the DORA (Digital Operational Resilience Act) regulation. DORA introduces a five-pillar framework of ICT Risk Management, Incident Reporting, Operational Resilience Testing, Third-Party Risk Management (TPRM) and information-sharing, ensuring a consistent provision of services across the entire digital value chain. In order to respond to these requirements, we require temporary external support.

Function description

We are seeking an experienced Cybersecurity consultant with expertise in DORA compliance to support the client in meeting regulatory requirements. This role involves assessing, advising, and implementing cybersecurity and operational resilience strategies to ensure compliance with DORA and related regulations. The resource will be working together with the IT team of the client’s and will be reporting to the Head of IT.

Key Responsibilities

• DORA Compliance Advisory: Provide expert guidance on aligning cybersecurity frameworks, IT risk management, and operational resilience strategies with DORA requirements.

• Gap Analysis & Risk Assessment: Conduct assessments to identify gaps in existing cybersecurity and ICT risk management practices.

• Policy & Framework Development: Assist in developing ICT risk management, incident reporting, third-party risk management, and business continuity frameworks.

• Incident Response & Crisis Management: Support in establishing incident reporting mechanisms aligned with DORA mandates.

• Testing & Simulation: Work together with third-party suppliers to ensure penetration testing, vulnerability assessments, and operational resilience testing to meet regulatory standards.

• Regulatory Reporting & Documentation: Prepare compliance reports and ensure proper documentation for audits and regulatory scrutiny.

Certification

Relevant certifications are a plus (CISM, CISSP, CRISC, CISA, ISO 27001 Lead Implementer/Auditor, CEH).

Required experience / knowledge

Technical experience

mandatory

• Proven technical and hands-on experience in cybersecurity, vulnerability assessment, monitoring tools, logging tools, access management tools.
• Strong knowledge of cloud security, third-party risk management, and penetration testing methodologies.
• IT risk management, or operational resilience within financial services.
• Strong knowledge of DORA (Digital Operational Resilience Act) and other relevant regulations such as NIS2, GDPR, EBA/ECB ICT risk guidelines, and ISO 27001/27005.
• Experience with cyber risk assessments, business continuity planning (BCP), disaster recovery (DR), and incident response.
• Familiarity with cybersecurity frameworks (NIST, CIS, ISO 27001, MITRE ATT&CK).
• Ability to engage with regulators, auditors, and senior stakeholders to explain compliance strategies.

preferable

• Knowledge and experience with Azure infrastructure tenant solution and setup is a plus.
• Experience with usage of ServiceNow is a plus.
• Experience working with European financial regulators or internal audit teams on DORA-related projects.

Business experience

mandatory

• Proven experience in developing and writing clear information security processes and (work) procedures (customizing from Group policies and procedures for the client).
• Experience in working together with third-party suppliers.
• Good communication skills - both written and orally, and adapted to the audience.
• Good presentation skills to bring the messages across in a simple and understandable manner (PPT, oral, ...).

Soft skills

• Team player.
• Ability to work in a dynamic and multi-cultural environment.
• Quick self-starter, pro-active attitude.
• Good analytical and synthesis skills.
• Quality Minded and eye for detail.
• Goal oriented, reactive, able to face projects pressure and work with deadlines.
• Autonomy, commitment and perseverance.