Job Description

Are you ready to make an impact in the world of Information Security, with a focus on GRC projects? Join BDO as a Information Security GRC Consultant and empower organizations to develop robust control programs that not only meet compliance requirements but also enhance their security posture. Be part of a warm, personal, and pragmatic team that makes a real impact in the industry.

What will you be doing?

As an Information Security GRC Consultant at BDO, you will play a pivotal role in delivering value to our clients and shaping the future of their information security strategies. Here’s what your day could look like:

• Lead maturity assessments of GRC programs and deliver actionable insights that drive real change.
• Design and implement comprehensive GRC strategies that align information security practices with business objectives and industry best practices.
• Develop and execute policies, procedures, and controls to manage IT and information security risks.
• Establish and monitor robust IT and information security risk management programs, including periodic risk assessments, incident tracking, and reporting.
• Oversee third-party risk management initiatives to ensure that vendors and partners meet security and compliance standards.
• Set up security awareness campaigns
• Monitor cyber regulations like DORA and NIS2 to understand their impact on our customers.
• Collaborate on strategic exercises that help our clients elevate their GRC maturity and develop robust information security roadmaps.

What do you bring to the table?

• Master’s Degree in a relevant field and 3-5 years of relevant experience.
• Excellent command in French or Dutch and fluency in English.
• Passionate about Information Security and willing to create and develop GRC frameworks.
• Familiar with Security Standards, including NIST CSF, NIST 800-53, and ISO 27001.
• Experience with GRC Tools and other technologies that support GRC initiatives.
• Technical background in IT infrastructure, networking, and cloud environments (e.g., Azure, AWS, Google Cloud) is an asset.
• Able to translate complex risksinto clear, actionable plans.
• Excellent communication skills with experience presenting to stakeholders at all levels, fostering solid client relationships.
• Willing to Pursue Certifications such as CISSP, CISM, CISA, or ISO 27001

What do we bring to the table?

• Culture you will join a team of experts who encourage respect, diversity and teamwork.
• Development you decide the direction of your career, and we support you where necessary.
• Impact from day 1 you will be given responsibility, with support from your team.
• Growth you get access to a whole range of training courses through our BDO Academy.
• Network you can work on different projects and clients, across business practices.
• Flexibility you choose where you work with flexible working hours.
• Wellbeing your physical and mental health is important to us.
• Proximity you work in an open culture, so feel free to speak to anyone, at any level.
• Salary you receive a competitive salary package with interesting benefits.
• Sustainability you work within a company with an integrated sustainability policy.

Ready to elevate your consulting career as an Information Security Consultant GRC at BDO? Apply now and let's grow together!