Location: Brussels, Belgium (4 days on-site per month required)
Contract Type: [Specify Contract Type]
Important Notes:
Please do not contact the Hiring Manager directly regarding this role. Non-compliance will result in candidate rejection.
Maximum of 3 CVs to be submitted per agency. Failure to follow this guideline will lead to automatic rejection.
Company Overview
Our client, a leading company in the Financial Sector, is a global critical financial market infrastructure (FMI) organization. Cybersecurity is at the core of their services, deeply embedded within their management systems and processes.
The Data Protection Governance team is part of the Cyber Information Security Office Division and is responsible for establishing and monitoring a robust data protection control framework. This framework is based on industry standards such as CIS Top20 and additional regulations applicable to trusted FMIs.
Role Overview
As a Data Protection Governance Analyst, you will play a critical role in defining, implementing, and monitoring cybersecurity controls to protect various data sources. You will assess security risks, ensure compliance with industry standards, and collaborate with key stakeholders to drive data protection initiatives.
Key Responsibilities
Design and implement cybersecurity data protection controls, including but not limited to:
Data Leakage Prevention (DLP)
Encryption (data at rest, in motion, in use)
Digital Rights Management (DRM)
Data Access Governance
Data Anonymization
Backup/Restore & Archiving
Define and enforce security requirements for data owners to meet control objectives.
Assess security risks related to data protection from both conceptual and technical perspectives.
Monitor the implementation of security controls across data sources.
Collect and document evidence of control efficiency for audit and regulatory purposes (including ISAE3402 compliance).
Collaborate with Cybersecurity, IT, Risk, Audit, and business teams to advance data protection strategies.
Develop strong relationships with stakeholders to ensure ongoing commitment and adherence to best practices.
Qualifications & Skills
Technical Expertise:
Extensive experience in IT security, specifically in infrastructure security, application security, or data security domains.
Strong knowledge of market-standard control frameworks, including but not limited to:
CIS TOP20
NIST 800-53 Rev.5
ISO 27001/27002
SWIFT CSCF
FISR (FML)
Familiarity with data protection controls such as encryption (DAR, DIM, DIU), data hashing, digital signing, data anonymization, DLP, DRM, CASB, and data access governance.
Experience in IT risk assessment, control efficiency evaluation, and risk management.
Understanding of inherent risks, residual risks, and control inefficiencies.
Experience with SQL, data modeling, and technical documentation.
Cybersecurity certifications such as CISSP, CISA, SSCP, GSEC, or SANS are a plus.
Interpersonal & Soft Skills:
Strong problem-solving abilities and strategic thinking.
Ability to understand and address complex cybersecurity challenges.
Team player with a proactive and collaborative approach.
Effective communication skills, capable of conveying technical concepts to both peers and management.
Entrepreneurial mindset with a hands-on approach to problem-solving.
Why Join?
Be part of a highly secure and trusted financial infrastructure organization.
Work in a dynamic environment at the intersection of cybersecurity, risk, and regulatory compliance.
Opportunity to collaborate with industry experts and influence cybersecurity strategies.
Competitive compensation and professional growth opportunities.
If you are a highly skilled cybersecurity professional with expertise in data protection, we encourage you to apply and contribute to strengthening our client's security framework in the financial sector.
