Job Description

Product Owner – Cybersecurity Testing & Exposure Management (Freelance)

Brussels, Belgium

Start: May 2026 | Duration: Until July 2027

Full-time | Hybrid

About the Role

We are looking for a Senior Product Owner to lead the development and delivery of Cybersecurity Testing & Exposure Management services within a large-scale public digital environment.

In this role, you will combine product ownership, stakeholder management, and deep security expertise to build and evolve services such as penetration testing, ethical hacking, and vulnerability management. You will define the vision, roadmap, and service delivery model while ensuring high-quality execution across internal teams and external partners.

Your Responsibilities

Product Ownership & Strategy

• 
  Define and manage the product vision, roadmap, and backlog
• 
  Translate stakeholder needs into actionable deliverables and priorities
• 
  Drive delivery through internal teams and external vendors

Penetration Testing

• 
  Plan and coordinate penetration tests across applications, infrastructure, and platforms
• 
  Define scope, objectives, and test strategies with stakeholders
• 
  Review and validate reports for:
  • 
    Quality and completeness
  • 
    Risk assessment and impact
  • 
    Actionable remediation recommendations

Ethical Hacking & Bug Bounty

• 
  Develop and manage vulnerability disclosure and bug bounty programs
• 
  Ensure structured intake, triage, and follow-up of vulnerabilities
• 
  Collaborate with internal teams and external security researchers

Exposure Management

• 
  Manage and optimize vulnerability scanning and attack surface management (ASM) solutions
• 
  Ensure proper configuration, integration, and reporting
• 
  Coordinate prioritization and remediation with relevant teams
• 
  Define and monitor KPIs and SLAs

Governance & Continuous Improvement

• 
  Manage suppliers and ensure service quality and performance
• 
  Lead RFI/RFP processes and vendor selection
• 
  Monitor industry trends and introduce new testing methodologies and tools
• 
  Ensure alignment with security standards and frameworks

Your Profile

Must-Have

• 
  Minimum 5 years' experience as a Product Owner (or similar role)
• 
  Minimum 5 years' experience as a Security Consultant
• 
  Strong experience in:
  • Penetration testing and vulnerability management
  • Exposure management solutions (vulnerability scanners, ASM)
  • Security process analysis, optimization, and governance
• 
  Experience with security frameworks (e.g. ISO27001, NIST, OWASP, CIS)
• 
  Proven ability to manage stakeholders and external vendors
• 
  Dutch proficiency at CEFR level C2

Nice to Have

• 
  Experience with RFI/RFP processes and vendor selection
• 
  Knowledge of pentesting standards (OWASP, PTES, OSSTMM, NIST)
• 
  Experience with service governance (SLA/KPI management)
• 
  Relevant certifications (e.g. CISM, CISSP, CEH)

What's in It for You

• 
  Lead and shape cybersecurity services at scale
• 
  Work in a high-impact public digital environment
• 
  Combine technical expertise with strategic product ownership
• 
  Collaborate with top-tier security professionals and partners
• 
  Flexible hybrid working model

Additional Information

• 
  Freelance assignment under framework agreement
• 
  Full-time engagement
• 
  Hybrid work setup
• 
  Long-term opportunity with possible extension