Job Specifications
We are looking for an experienced Security Architect to strengthen enterprise and critical infrastructure security. In this role, you will translate strategic security directions into concrete, robust technical solutions across IT, OT, cloud, and network environments. You'll ensure compliance with regulatory frameworks (NIS2, GDPR, ISO 27001, IEC 62443, ...) while designing a resilient and coherent security architecture for complex, hybrid environments.
What You'll Do
Security Architecture & Governance
Define and evolve target security architectures, embedding Security by Design and Privacy by Design.
Create and maintain security standards, models, and principles aligned with enterprise strategy.
Integrate domains including network, cloud, IT/OT/IoT, ICAM, data, and cryptography into a unified vision.
Risk Management
Conduct technical and architectural risk assessments across projects, infrastructures, applications, and industrial systems.
Identify threats and vulnerabilities, recommending mitigation measures.
Maintain a consolidated view of risks in domains like SAP, IT/OT/IoT, AI usage, and identity/access management.
Compliance & Standards
Draft and update technical security standards in line with frameworks such as CyFun, ISO 27001, IEC 62443, NIST, NIS2, and GDPR.
Ensure traceability of security decisions and alignment with internal governance models.
Support & Advisory
Assist IT, OT, and business teams in integrating security requirements into projects and procurement processes.
Guide alignment of key architectural components (ICAM, detection/response, cryptography, SAP security, etc.) with overall objectives.
Continuous Improvement
Monitor emerging threats, technologies, and regulations.
Propose improvements in detection, response, logging, resilience, and identity management.
Promote reusability and consistency of architectural components.
What are we looking for?
5-10 years of experience in cybersecurity architecture, risk assessment, or a related role.
Bachelor's in Cybersecurity, Computer Science, or similar (Master's preferred).
Strong expertise with security frameworks (CyFun, ISO 27001, NIST, IEC 62443, NIS2, GDPR, CIS Controls).
Broad technical knowledge in at least several of:
Network segmentation & Zero Trust
Cloud security
Secure SAP integration
ICAM (IAM, PAM, IGA, federation, provisioning)
Cryptography (PKI, key management, strong authentication)
XDR, SIEM, monitoring & auditing
Secure AI and generative model usage
Proficiency with modeling tools and languages (e.g., Archimate).
Certifications
Strongly preferred: CISSP
Valuable: CISM, CISA, ISO 27001 Lead Implementer, SABSA, or similar.
Languages
Fluent in English (mandatory).
Fluent in French and/or Dutch.
What do we offer?
Location: Brussels, hybrid
Start date: 02/10/2025.
End date: 31/12/2026 (with possible extension).
Workload: Full-time
Contract type: Freelance/Perm
About the Company
Pauwels Consulting is a Belgian consultancy firm with more than 1500 experts in engineering, life sciences and IT. We staff, manage and execute projects for leading organizations in Belgium, France, The Netherlands and beyond.
Experts in Engineering, Life Sciences and IT
Our Engineering team helps organizations in the (petro)chemical, civil engineering, industrial production, energy and transport businesses with the design, supervision, support and execution of long-term projects. We are particularly active in the fields o...
Know more