Business Analyst

Freelancer Opportunity

Job title: Cyber Security GRC Business Analyst

Job location: Brussels, Belgium

Job duration: 2026-06-01 to 2026-12-31

Job weekly hours: 40 hrs./week

Language skills: English (Fluent)

Salary range: 70 to 75 euros an hour

Job description:

Within this Proximus’ first Belgian center of excellence combining artificial intelligence and cybersecurity, the mission of the Security Management and Incident Response divisions is to protect Proximus, its customers, its business, its operations, and its reputation against any threats, external and internal. You will be fascinated by a highly dynamic environment, a strong collaboration, and very deep technical aspects.

To enlarge the team of the Governance, Risk and Compliance domain, we are looking for a Cyber Security GRC Business Analyst.

Your Role:

Translate GRC process needs into ServiceNow IRM delivery: gather requirements with process owners and end users, structure them into epics/user stories, and ensure they can be implemented in a maintainable way in ServiceNow IRM.

Cover multiple IRM modules, with focus on the operational processes and user journeys across Risk Management, Compliance / Internal Control, Audit Management.

Cover TPRM-related use cases (vendor/engagement data, questionnaires, roles/personas, operational workflows) and ensure alignment with the broader IRM setup and governance model.

User-driven approach: optimize workflows for end users (clarity, minimal clicks, consistent forms/workspaces, meaningful notifications), and continuously improve usability based on feedback.

Pragmatic configuration-first mindset: prioritize out-of-the-box and configuration-driven capabilities and avoid complex customizations or heavy to maintain configurations unless there is a clear business case and long-term maintainability justification.

Write strong user stories and acceptance criteria: ensure each story is testable, traceable to a business need, and ready for implementation by the development team (including functional specs when needed).

Execute small changes independently in the platform, such as:

• simple form/list adaptations, field behavior, minor workflow adjustments, notifications, basic reporting/dashboard tuning, and controlled update sets; while larger changes are handled by the development team (with the BA providing clarified functional intent and supporting testing).

Support UAT and quality: define test scenarios, coordinate UAT with stakeholders, validate delivered changes vs acceptance criteria, and ensure smooth adoption.

Contribute to sustainable data/reporting needs: ensure that the solution remains reportable and scalable (consistent object relationships, clean data capture, reusable reporting approach).

Support TPRM-related use cases (vendor/engagement data, questionnaires, roles/personas, operational workflows) and ensure alignment with the broader IRM setup and governance model.

Your Profile:

• At least 3 years’ experience as a Business Analyst working with ServiceNow IRM, with hands-on experience translating requirements into user stories and supporting configuration-driven implementation.
• Hands-on ServiceNow capability: comfortable making small configuration changes independently; able to produce high-quality functional specifications for the development team for more complex changes.
• Solid understanding of GRC concepts and workflows, especially across Risk, Compliance/Internal Control, Audit, and TPRM, and able to connect business intent to tool behavior.
• Strong interpersonal skills: facilitation, structured communication, ability to challenge constructively, and alignment-building across multiple stakeholders.
• Analytical and structured: able to break down complex topics into incremental deliverables and make sound trade-offs (value vs complexity).
• Agile mindset: experienced in backlog refinement, prioritization, sprint support, and iterative delivery.
• Background with Telecom Operator knowledge is a plus.
• Language skills: fluent in English (spoken and written).

Apply now and start your journey with Team Possible! We want to get to know you.

After your application, we will verify your profile and get back to you within 3

working days.

If you’re successful, you can expect the following steps:

An initial conversation with our recruiter - Swati Kumari

Interview with the Hiring Manager and the team.

Final decision

About Proximus

We are Team Possible turning tech into opportunities.

We are driven by four core pillars: "I care," "I make a difference," "I radically simplify," and "I embrace the future". This means you'll join a team that genuinely cares for customers and colleagues, is empowered to make a real impact, strives to radically simplify complex challenges, and is always looking ahead to embrace the future of technology. We believe in an inclusive and safe environment where everyone can thrive, offering extensive career development resources, including access to over 5,000 training modules and a minimum of 5 days of training per year, to help you continuously learn, grow, and tackle bold challenges with us.