Senior GRC Consultant

Context of the Role

Approach Cyber is a trusted cyber resilience partner supporting organisations across Belgium and Switzerland. With more than 25 years of experience, over 100 experts, and 1000+ happy clients, we help companies face an increasingly complex digital world, one where threats accelerate, regulations expand, and resilience has become non-negotiable.

We uniquely combine strategic advisory, offensive and defensive expertise, SOC operations, and product engineering with the sovereign AXS Guard© managed security platform. This end-to-end model is what sets us apart: we don’t just advise, we build, operate, and continuously improve, grounded in real incidents and real operational experience. Local. Complete. Pragmatic.

We are currently living a period of genuine growth (both in terms of client demand and geographic ambition). Our GRC team of around 20 experts is at the heart of this momentum, advising organisations across all sectors on how to strengthen their cybersecurity governance, manage risk, and navigate an evolving regulatory landscape.

To keep pace with our ambitions, we are looking for a Senior GRC Consultant who wants more than a consulting role. Someone who wants to contribute to something that is actively being built.

 

Are you the driver we are looking for?

You are a seasoned GRC professional who thrives in complex environments and knows how to translate security challenges into business language. You are as comfortable facilitating a board-level risk conversation as you are rolling up your sleeves to implement an ISMS or guide a client through a NIS2 compliance journey.

But beyond this expertise, what makes you stand out is your energy. You bring ideas, you challenge the status quo, and you are deeply invested in your clients’ success. You want to be part of a team that is growing fast, and you want to grow with it.

Whether you are Dutch-speaking or French-speaking, there is a meaningful role for you here, with one important distinction:

• Dutch-speaking people: Flanders is a strategic priority for Approach Cyber. We have significant ambitions for this region and a growing pipeline of opportunities. As part of your role, you will actively contribute to developing the Flemish market: building relationships, representing Approach at events and industry forums, identifying new opportunities, and acting as a credible face of Approach Cyber with prospects and clients in the region. This is a core part of what we are looking for.
• French-speaking people: Your primary focus will be client delivery. That said, your expertise and your network are valuable commercial assets. We will expect you to adopt a consultative selling approach (spotting opportunities during missions, engaging naturally with prospects, and contributing to Approach’s visibility in your professional circles).

 

Your responsibilities

As a Senior GRC Consultant, your day-to-day will revolve around three areas:

 

Client advisory & delivery

• Perform cybersecurity maturity assessments using our ACAM® (Approach Cybersecurity Assessment Methodology) and other recognised frameworks.
• Design and implement Information Security Management Systems (ISMS) based on ISO 27001, and support clients throughout certification processes.
• Guide clients through NIS2, DORA, and CRA compliance journeys (from gap analysis to operational implementation).
• Develop security roadmaps, define priorities, and translate them into actionable plans that make sense for your client’s business context.
• Lead and coordinate security projects, driving change management and ensuring strategic decisions are turned into concrete results.
• Deliver CISO-as-a-Service engagements: provide strategic and technical guidance, support governance structures, and help clients manage security incidents when they arise.
• Build long-lasting relationships with your clients, as their go-to advisor, not just their consultant.

Market development

• Actively represent Approach Cyber in the market: attend events, participate in panels, and build a visible presence in the cybersecurity community.
• Identify and develop new business opportunities, leveraging your network and your expertise as your most credible commercial asset.
• Engage with prospects in a consultative and authentic way
• Report field insights and market intelligence to help shape our go-to-market approach in the region.

Internal contribution & team growth

• Contribute to the continuous improvement of our methodologies, frameworks, and reusable assets.
• Share knowledge with the team: market trends, regulatory evolutions, new frameworks, lessons learnt from the field.
• Support and mentor junior colleagues, helping them grow and succeed on complex engagements.

 

Profile

• You have a minimum of 3 years of relevant experience in GRC, information security consulting, or a similar advisory role.
• You hold (or are actively working towards) certifications in areas such as ISO 27001, NIS2/DORA/CRA compliance, Risk Management, or CISO-as-a-Service. What matters most is that you can demonstrate real, hands-on experience in these areas.
• You think strategically: you understand senior management concerns, know how to evaluate business risks, and can translate complex security topics into clear, actionable recommendations.
• You communicate with confidence and clarity, adapting your language to your audience, whether a technical team or a C-level sponsor.
• Language: you are fluent in Dutch (native) or French (native), with a strong command of English. The other national language is a real asset. Trilingual profiles (FR/NL/EN) are especially welcome.

 

Human skills

• Commitment and drive: you are invested in your work and in Approach Cyber’s project. You go the extra mile, not because you have to, but because you care about the outcome.
• Trusted Advisor mindset: you genuinely care about your clients’ success. You are curious about their business, proactive in your recommendations, and honest in your guidance.
• Team player: you thrive in a collaborative environment and actively contribute to the team’s collective success, sharing knowledge and supporting colleagues.
• Integrity without compromise: you handle sensitive client and company information with full discretion, always.
• Ambassador for the professional values that are at the heart of our philosophy:
  • TOP-NOTCH: We strive for best-of-the-best while staying ahead of the curve.
  • HUMAN-CENTRIC: We care about people in the digital world.
  • NO-NONSENSE: We go for it, we work together, we deliver.

Our offer

• Join a dynamic and fast-growing company in a booming sector
• Participate in the development of the company as a co-creator of innovative solutions
• Develop your career path and add top-level trainings and certifications to your CV
• Benefit from an attractive salary package, including a full range of benefits :
  • A CDI contract
  • A mobility budget or company car
  • A competitive group insurance including pension fund, death, and disability coverage,
  • An attractive complementary insurance for non-work-related accident and loss of salary in case of sickness, company fully supported contribution
  • 32 days holiday/year (on a fulltime equivalent basis)
  • A flexible home working policy
  • Other fringe benefits (meal vouchers, eco vouchers, …)
• Fun company events, exclusive team experiences
• Contribute to a safer, fairer world for data subjects and citizens, ensure the serenity of great businesses and essential public institutions
• Live your values daily in a dynamic, fun and multicultural working environment.

Interested ?

Don’t wait, send us your CV and application to jobs@approach-cyber.com. Join us in our commitment to ensuring cyber serenity and contributing to a safer digital world.