Cybersecurity Expert – Risk

Leonardo Belgium provides advanced cybersecurity and IT expertise to European institutions, supporting the protection and resilience of critical digital infrastructures.
We are currently seeking a Senior Cybersecurity Expert – Risk & Compliance to support the European Commission's Directorate-General for Health and Food Safety (DG SANTE).

In this role, you will contribute to strengthening the security posture of DG SANTE's information systems, helping ensure the confidentiality, integrity, and availability of systems that underpin Europe's public health and food safety policies.

Job Specifications

• Location: Brussels
• Work schedule: On-site preferred, with flexibility for partial remote work
• Contract type: Freelance preferred (or willing to create a VAT)
• Starting date: November 2025
• Security: Eligibility for Personal Security Clearance (PSC) required

As a Senior Cybersecurity Expert – Risk & Compliance, you will play a key role in assessing, maintaining, and improving the cybersecurity framework of DG SANTE's IT systems across its European sites (Brussels, Luxembourg, and Grange).

You will work within the team and collaborate with both technical and policy units to ensure that information systems comply with EU cybersecurity standards, policies, and best practices.

Your responsibilities will include:

• Preparing and conducting security assessments of information systems.
• Managing security risks throughout the system lifecycle.
• Developing and maintaining solutions to mitigate identified risks.
• Ensuring the confidentiality, integrity, and availability (CIA) of DG SANTE information systems.
• Coordinating and reviewing implementation of security controls.
• Supporting the integration of security technologies in complex IT environments.
• Interacting with information system owners and policy units to align technical solutions with governance objectives.

• Education : Bachelor's degree (or higher)
• Experience : 12+ years of ICT experience, at least 6 years in cybersecurity
• Proven experience in information systems security governance, risk management, and policy compliance
• Deep understanding of security frameworks and standards (ISO 27001, NIST, CIS, etc.)
• Strong analytical and problem-solving skills, with the ability to assess complex systems and propose pragmatic security improvements
• Excellent written and oral communication skills, capable of interacting with both technical and non-technical stakeholders
• High level of discretion, integrity, and professionalism
• Fluency in English (B2/C1) required

Nice to have

• Experience working in large, multicultural organizations, preferably within European institutions or international bodies
• Relevant cybersecurity certifications (CISSP, CISM, ISO 27001 Lead Implementer/Auditor, or equivalent)
• Fluency in French is an advantage

What do we have to offer?

• The opportunity to contribute to strategic cybersecurity initiatives within the European Commission
• A meaningful role supporting the digital resilience of Europe's public health and food safety systems
• A multicultural and mission-driven environment, fostering professional growth and collaboration
• Flexible working arrangements adapted to project needs
• A competitive salary aligned with experience and framework contract standards