Cyber Security Consultant

• Assess the current phishing awareness maturity level and review existing analyses and findings.
• Define and structure a comprehensive phishing awareness strategy covering a 12- to 24-month horizon.
• Design and maintain a phishing simulation campaign catalogue, including:
• Various attack scenarios
• Multiple difficulty levels
• Targeted audiences and employee profiles
• Plan, implement, configure, and execute phishing simulation campaigns end-to-end.
• Analyze campaign results and provide actionable recommendations to improve cyber security awareness.
• Develop and contribute to a multi-channel internal communication plan in collaboration with key stakeholders, including Cyber Security, Internal Communications, and business departments.
• Define KPIs, maturity indicators, success metrics, and reporting dashboards to measure program effectiveness.
• Monitor progress and continuously improve awareness initiatives based on campaign outcomes and organizational needs.
• Deliver knowledge transfer and coaching to ensure long-term internal ownership and autonomy in managing phishing awareness campaigns.
• Act as a trusted advisor to stakeholders on cyber security awareness and behavioral change initiatives.

• Proven experience in cyber security awareness, phishing simulation programs, and security culture development.
• Strong expertise in Cyber Security and Information Security frameworks, including ISO 27001.
• Experience working within Microsoft 365 environments, including Exchange Online.
• Demonstrated experience in change management and user adoption initiatives.
• Ability to design awareness strategies and translate them into practical, measurable action plans.
• Strong analytical skills with the ability to interpret data and generate meaningful insights.
• Excellent communication, presentation, and stakeholder management skills.
• Customer-focused mindset with a strong solution-oriented approach., * Cyber Security (Expert)
• Security Awareness & Phishing Programs (Expert)
• Change Management (Expert)
• Analytics & Reporting (Expert)
• Microsoft 365 / Exchange Online (Expert)
• ISO 27001 (Expert)

Languages

• Native or bilingual proficiency in Dutch or French (mandatory)
• English (preferred)

We are seeking an experienced Cyber Security Awareness & Phishing Program Lead to define, implement, and manage a comprehensive phishing awareness strategy across a large and diverse organization of approximately 10,000 employees. Reporting to the Security Business Development Manager within the CSO organization, the consultant will play a key role in strengthening the organization's cyber security culture through targeted awareness campaigns, stakeholder engagement, and measurable improvements in employee resilience against phishing attacks.