CISO Security Architect

CISO Security Architect - Freelance

Duration : 2 years

Location : Brussels (hybrid)

Description :

The Security Architect translates strategic cybersecurity directions into concrete, robust technical solutions. This role ensures regulatory compliance (NIS2, GDPR, ISO 27001, IEC 62443, etc.), consistency, and the effectiveness of security measures across the organization, with a focus on critical services and vital infrastructures.

The Security Architect contributes to an integrated security architecture spanning IT, OT, cloud, and network environments, leveraging ArchiMate models and frameworks such as CyFun and ISO 27001 to ensure traceability, governance, resilience, and business continuity.

Key Responsibilities

Security Architecture

• Design, formalize, and evolve the target security architecture, integrating requirements from early project stages (Security by Design, Privacy by Design).
• Define security architecture standards, models, and principles aligned with strategic objectives.
• Integrate key security domains (network, cloud, IT/OT/IoT, ICAM, data, cryptography, etc.) into a coherent and modular vision.
• Lead or participate in security intake processes and architecture committees to ensure alignment with the target architecture.

Risk Management

• Conduct technical and architectural risk assessments on projects, infrastructures, business and support applications, and industrial systems.
• Identify threats, vulnerabilities, and attack scenarios, and recommend appropriate mitigation measures.
• Maintain an up-to-date consolidated view of risks across domains including ERP systems (SAP), IT/OT/IoT environments, AI usage, access management, and inter-application data flows.

Standards, Compliance, and Governance

• Contribute to drafting and updating technical security standards, ensuring alignment with legal requirements and frameworks (CyFun, ISO 27001, IEC 62443, NIST, NIS2, GDPR, etc.).
• Participate in security governance committees to guide technical decisions.
• Ensure architectural consistency with internal standards and maintain traceability of decisions.
• Coordinate with regulatory authorities as required.

Support and Advisory

• Assist project, IT, OT, and business teams in integrating security requirements, including in complex environments (SAP integration, IT/OT convergence, cloud solutions, access management).
• Provide support during design, solution analysis, or procurement processes (RFI/RFP).
• Ensure alignment of critical architectural components (ICAM, detection and response solutions, cryptography, etc.) with overall security objectives and the IT roadmap.

Continuous Improvement and Technology Monitoring

• Stay updated on evolving threats, technologies, regulations, and governance models, identifying opportunities for innovation.
• Recommend improvements to strengthen security posture, including detection and response, logging, resilience, and identity management.
• Promote modeling, reusability, and consistency of architectural components.

Qualifications

• Bachelor’s degree in Cybersecurity, Computer Science, or related field; Master’s preferred.
• 5–10 years of experience in cybersecurity architecture, risk assessment, or a related role.
• Fluent in English; French and/or Dutch proficiency required.
• On-site presence 2 days per week.

Technical Knowledge and Skills

• Proven experience in hybrid environments (IT, OT, IoT, Cloud, ERP).
• Strong understanding of regulations, standards, and frameworks: CyFun, ISO 27001, NIST, IEC 62443, NIS2, GDPR, CIS Controls, etc.
• Ability to develop and maintain security processes, policies, and standards aligned with business and regulatory requirements.
• Broad technical expertise in areas such as:
• Network architecture, segmentation, Zero Trust models, Cloud Security
• Secure SAP integration
• ICAM (IAM, IGA, PAM, federation, provisioning, physical/logical access management)
• Cryptography (PKI, key management, strong authentication)
• XDR, SIEM, monitoring, and auditing
• Secure use of AI and generative models
• Architecture modeling tools and languages (e.g., ArchiMate)
• Certifications:
• Highly preferred: CISSP
• Other valued certifications: CISM, CISA, ISO 27001 Lead Implementer, SABSA, or recognized cybersecurity certifications

Behavioral Competencies

• Strong communication, synthesis, and simplification skills.
• Ability to interact with diverse stakeholders (technical teams, business units, executives).
• Structured, critical, and solution-oriented mindset, capable of proposing improvements.
• Autonomous, rigorous, with strong prioritization and change management skills.