Chief Information Security Officer

General Information

Press space or enter keys to toggle section visibility

Company Deloitte Business Unit Enabling Functions Primary Location Zaventem Field of interest Technology Industry Focus Industry Agnostic Recruiter Al-Mbaidin, Kais - kalmbaidin@deloitte.com

Description of the position

Press space or enter keys to toggle section visibility

Can’t wait to make an impact on the world? You’re not alone. Join us in driving progress in the working world and beyond. Your journey with us
Cyber threats don't stand still. Neither do we. Deloitte Belgium is looking for a CISO who can lead from the front, protecting a 5,500-person firm while shaping the security strategy that keeps us ahead of the curve. This is a rare opportunity to own security end-to-end, not just as a technical function, but as a firm-wide service that directly enables the business to operate with confidence.As CISO, you'll be the firm's most senior security leader, reporting directly to the CIO and accountable for the security posture, risk management, and compliance obligations of Deloitte Belgium. You'll lead three specialist teams: our Governance, Risk & Compliance (GRC) function, our Security Operations Centre (SOC), and our Application Compliance Assessment team.This isn't a purely technical role, nor is it purely strategic. It's both. You'll need to be equally comfortable presenting cyber risk to the Executive Committee and reviewing SOC playbooks with your incident response team, with everything in between.
As CISO, you will hold full service ownership of our Security, Governance & Risk domain — accountable for outcomes, not just processes.

Security Operations: 

• Lead our SOC, SIEM, ISMS, and incident response capability. Drive MTTD and MTTR improvements and ensure the firm is always one step ahead of emerging threats.

Risk & Compliance

• Own our GRC framework, regulatory compliance (NIS2, GDPR, DORA, EU AI Act, Internal Deloitte controls), and audit management — reporting directly to ExCo on our risk posture.
• Own the firm's security risk register and represent cyber risk at ExCo and governance forums

Application Security

• Ensure our Secure SDLC framework is embedded across all development activity. Make security a shared engineering value — not a late-stage gate.

Strategy & Leadership

• Set and execute the firm's information security strategy from policy to operations to culture..
• Manage team capacity, performance, skills development, and succession planning across the security function, with teams covering GRC, SOC, and application compliance.
• Oversee the use of managed security service providers and third-party partners, ensuring performance and value.
• Act as the CIO's trusted advisor — and the business's — on all things security.

Let's talk about you
You must have:

• 10+ years in information security with at least 5 in a senior leadership role (CISO, Deputy CISO, Head of Cyber).
• Proven experience owning security as an end-to-end service — strategy through to delivery — in a complex enterprise context.
• Strong command of regulatory requirements: NIS2, GDPR, DORA, EU AI Act, ISO 27001.
• The ability to communicate security risk to ExCo and board-level audiences with confidence and clarity.
• A leadership style that builds trust, develops talent, and makes security a partner to the business — not a barrier.
• Strong people leadership skills, with experience managing multi-disciplinary security teams and third-party security providers.
• Experience with cyber incident response, crisis management, and post-incident review at enterprise scale.

You'll stand out if you also have:

• CISSP, CISM, CISA, or equivalent professional certification.
• Experience in professional services, financial services, or another regulated sector.
• A track record of embedding DevSecOps and securing cloud-native delivery pipelines.
• • French and/or Dutch language capability.

Our story Highly skilled and motivated professionals in our IT Team support with different projects to deliver innovative solutions and with specialized operational guidance to ease our internal clients each day. IT's mission is to embed technology which supports the 'Deloitte way' of doing business, providing a distinctive experience that enables new business, transforms the existing business and provides world class customer support.

Who is Deloitte?
We provide industry-leading audit and assurance, tax and legal, consulting and related services. We are committed to driving innovation across offerings to help our clients address their challenges, while giving our professionals opportunities to learn and grow in this era of transformation.
In Belgium, +5000 dedicated professionals active in +10 offices, take great pride in bringing multidisciplinary expertise to a wide variety of clients, from national and international companies, small, fast-growing and large organizations to public institutions and governmental authorities.
Why Deloitte?
Be the true you! We foster diversity and inclusion and encourage you to bring your authentic self to work. Explore, question and collaborate while building a career that inspires and energises you.
Never stop growing! Diversity of thought makes us stronger. At Deloitte, we tailor a personalized learning experience, offering you the opportunity to grow at your own pace and achieve maximum impact.
We practice what we preach! As a Purpose-led organisation, at the heart of everything we do is a set of timeless principles and unifying values.
Life looks different for each of us, so we created a varied benefits package that you can tap into:

• My Benefits My Choice, a flexible rewards plan tailored to your lifestyle and priorities
• Sustainable transport options offered by Mobility@Deloitte
• Flexible work arrangements for all and initiatives supported by Parents & Caregivers @Deloitte
• Wellbeing tips and activities powered by Energise@Deloitte
• Topped off with other health benefits and insurance opportunities

Empowering our employees with flexible work arrangements remains essential in today's reality:

• Hybrid workplace: combination of home office and on-site (+10 offices in Belgium or client's premises).
• Part-time employment: all our jobs are open to full-time or part-time work under a 90% or 80% regime.

Join us to make an impact together! Apply now! #LI-KA1