Job description
Senior Cybersecurity Consultant – Security Governance & Architecture
Location: Luxembourg (Hybrid)
Contract: Long-term freelance/consulting engagement
Overview
Our client in Luxembourg is looking for a Senior Cybersecurity Consultant to support Security Governance, Risk & Compliance activities and lead strategic security initiatives. You will contribute to defining and implementing security policies, standards and architecture, while guiding both management and technical teams.
Key Responsibilities
-
Develop and maintain security policies, standards, baselines, and guidelines.
-
Lead cybersecurity / ISMS implementation and security-related projects.
-
Perform security and risk assessments (e.g. ISO 27005, EBIOS).
-
Define security architecture and propose security countermeasures.
-
Support incident response activities and perform dedicated technical security analysis.
-
Secure cloud environments (including containerisation).
-
Oversee application security (secure coding practices, WAF).
-
Drive data security: encryption, PKI, DLP, digital signature frameworks.
-
Design and deliver cybersecurity awareness programs to internal users.
-
Support compliance with standards and regulatory cybersecurity frameworks.
Must-Have Experience
-
Master’s degree in IT or related field.
-
10+ years experience in cybersecurity with a strong focus on policy, standards, governance and architecture.
-
5+ years leading teams or projects in security.
-
Strong expertise in Security Governance–Risk–Compliance (GRC).
-
Experience implementing ISMS (ISO 27001/27005).
-
Solid understanding of network and security architecture: firewalls, proxies, PKI, IDS/IPS, remote access, authentication.
-
Exposure to cybersecurity frameworks: ISO/IEC 270xx, NIST 800, ANSSI, BSI, ISF.
-
Experience in Identity & Access Management (IAM).
-
Ability to coach, mentor and present to senior stakeholders.
-
Minimum one cybersecurity certification (e.g. CISSP, CISM, ISO 27001 LI/LA).
