IT Security Program Manager

As part of the compliance with the NIS2 directive, we are looking for an experienced Senior Cybersecurity Program Manager to lead our NIS2 roadmap., The Senior Cybersecurity Program Manager will be responsible for the development, implementation and monitoring of the NIS2 compliance strategy within the organization., Strategy & Planning NIS2 Develop and maintain the NIS2 strategic compliance roadmap Conduct gap analysis between the current state and NIS2 requirements Define program priorities, milestones and deliverables Establish the budget and necessary resources for the program Governance & Management Manage the NIS2 program from end to end (Agile/Waterfall) Coordinate the multidisciplinary teams (IT, Legal, Compliance, Business) Ensure regular reporting to the COMEX and the competent authorities Manage program risks, dependencies and issues Compliance & Technical Implementation Supervise the implementation of cybersecurity measures required by NIS2 Develop and review security policies, procedures and frameworks Ensure the integration of NIS2 requirements into existing processes (ISO 27001, GDPR) Coordinate with the technical teams for the deployment of controls Risk Management & Incident Response Establish and maintain the cybersecurity risk register Improve incident detection, response and recovery capabilities Define the procedures for notification to the authorities (CSIRT/CERT) Pilot the crisis exercises and continuity tests Third-Party & Supply Chain Security Assess and manage cybersecurity risks of critical suppliers Implement due diligence processes for the supply chain Ensure provider compliance with NIS2 requirements Communication & Training Raise awareness and train stakeholders on NIS2 requirements Develop a culture of cybersecurity within the organization Communicate with regulators and supervisory authorities

Minimum 7-10 years of experience in cybersecurity and program management Demonstrated experience in implementing regulatory compliance programs (NIS2, GDPR, DORA, etc.) In-depth knowledge of security frameworks (ISO 27001/27002, NIST, CIS Controls) Experience in managing complex projects in regulated environments Excellent leadership, communication and stakeholder management skills Experience in the Belgian or European public sector highly appreciated Ability to work independently and manage multiple priorities