Job Description
NIS2 Cybersecurity Governance Consultant (Part-Time)
Location: Brussels, Belgium (Hybrid)
Start Date: August 2026
Contract Duration: 5 months (Part-Time – 1 to 2 days per week)
About the Role
We are looking for an experienced NIS2 Cybersecurity Governance Consultant to support the relaunch and structuring of a major NIS2 compliance programme within a critical digital services environment.
The successful consultant will act as a trusted advisor, providing expert guidance to the internal Programme Manager while helping establish a sustainable governance framework, prioritise compliance initiatives, and implement a risk-based approach aligned with NIS2 requirements.
This is an excellent opportunity for a senior cybersecurity professional with extensive experience in governance, compliance, and risk management to make a significant impact on a high-profile programme.
Key Responsibilities
- Review and assess the existing NIS2 compliance programme, including gap analyses, assessments, governance documentation, and action plans.
- Establish a structured governance model for the programme, including reporting, prioritisation, and decision-making processes.
- Assess critical business services, dependencies, suppliers, and cyber risks.
- Define a risk-based methodology for prioritising compliance activities.
- Develop a practical Minimum Viable Compliance (MVC) approach to accelerate NIS2 readiness.
- Identify quick wins and recommend pragmatic remediation activities.
- Build a phased roadmap for achieving sustainable compliance.
- Support, coach, and transfer knowledge to the internal Programme Manager.
- Facilitate workshops with key stakeholders and senior management.
- Produce executive-level reports, governance documentation, and programme updates.
Required Experience
- Proven experience delivering NIS2 compliance programmes for essential or important entities.
- Strong background in cybersecurity governance, risk management, and compliance.
- Experience establishing governance frameworks and managing compliance programmes.
- Knowledge of public sector or digital services environments is highly desirable.
- Ability to engage with senior stakeholders and deliver executive-level documentation.
- Experience mentoring or supporting programme managers and internal teams.
Preferred Certifications
- CISSP
- CISM
- ISO 27001 Lead Implementer (Senior)
- Equivalent cybersecurity governance certifications will also be considered.
Work Arrangement
- Part-time engagement (approximately 1–2 days per week).
- Hybrid working model with a combination of on-site meetings in Brussels and remote work.
- Opportunity to extend beyond the initial contract based on programme needs.
If you have extensive experience in cybersecurity governance and NIS2 compliance and are looking for a strategic consulting engagement, we'd love to hear from you.