Join our team as GRC Consultant!

Gepubliceerd op December 19, 2025

GRC Security Professional (mid-level)

We are currently looking for a French speaking GRC Security Professional (mid-level),  with a passion for all concerning Governance, Risk & Compliance and a sweet spot for the healthcare sector and the higher education landscape.

If your heart starts beating faster thinking about boosting cyber resilience for the SHIELD members by creating and supporting them throughout their GRC implementation tracks with NIS2 on the horizon, then do read on…

Your Role

As a GRC Security Professional at SHIELD, you will play a central role in carrying out assessments and GRC-related implementation processes for the members of SHIELD vzw/asbl. You will work closely with our SHIELD Security Architects and our members' IT and management teams, as well as other domain experts within SHIELD, with the ultimate goal of helping to raise our members' cyber resilience to a higher level.

Your Responsibilities

You will help lay the foundations and assist in the development of a GRC blueprint architecture for our members based on the requirements of the CyFun (Cyber Fundamentals) and ISO27001 frameworks:

  • The development and monitoring of an overarching security architecture

  • The development of uniform implementations and associated SOPs 
  • The development of operational, monitoring, reporting and response processes

  • Overseeing process assurance, compliance, accreditation, etc.

  • Monitoring maturity growth and reporting on this

  • Conducting and assisting in security assessments

  • Monitoring and guiding technical working groups and communities

  • Assisting SHIELD members in the implementation of their respective GRC processes

In short, as a GRC Security Professional, you can expect a varied role with plenty of scope for initiative. It is the ideal place for an interesting, educational work experience with an impact in the relevant sectors. The range of tasks will be further tailored to your experience and background.

About you

You have a Bachelor's or Master's degree, preferably in IT, Engineering/Computer Science or a related field, or an affinity with auditing and assessment roles

  • You have at least 1 year of relevant work experience in the field of IT security, preferably in performing security assessments or pentests.
  • You have knowledge of and experience with the ISO27001 and CyFun standards, or you are willing to become certified in these areas.

  • You have knowledge of and experience with various security tools, techniques and best practices, such as OWASP, NIST, CIS, etc.

  • You have analytical and critical thinking skills, and you can solve complex security issues.

  • You have excellent communication and social skills, and you can work both independently and as part of a team.

  • Working on a rotating shift to be available 24/7 for the customer does not deter you.

  • Language skills: You are native French and you can speak and write fluently in Dutch and English.

About SHIELD

SHIELD vzw is a progressive alliance between hospitals and higher education institutions, with the aim of creating a leading IT infrastructure and (cyber) security architecture. Founded by Jessa Hospital, Hasselt University and East Limburg Hospital, SHIELD strives to harmonise the approach of our members and support them on their path to NIS2 compliance and CyFun certification. From our headquarters in Hasselt, we build bridges between policy and practice.

What we offer

  • Impact: You don't work for just one company, but help build the digital security of an entire sector. Your work protects patient data and research results.
  • Team & Culture: A full-time position within a dynamic team of experts, with ample opportunities for initiative.
  • Attractive terms and conditions: A competitive salary that fits with your experience, supplemented by extensive training opportunities to further develop your expertise in security and privacy.
  • Flexibility: Every Monday, you will find the entire SHIELD team at the Corda Campus in Hasselt. You plan the rest of your working week yourself together with your team; everyone can work from home up to three days a week, to be scheduled, depending on what needs to be done that week.
  • Opportunities to grow: we believe that talent should get room to grow. This results in opportunities for personal initiative and development. Following trainings and access to learning platforms is all part of the package.

Interested?

Would you like to be one of the architects behind tomorrow's digital defence? Send your CV and cover letter to Guido Thonissen, Teamlead GRC ([email protected]) or Kurt Gielen, COO ([email protected]).

We are recruiting employees on payroll for this position. Freelancers and recruitment agencies, please refrain from applying.

SHIELD has an inclusive recruitment policy. We encourage everyone to apply, regardless of gender, origin, age, disability or background.

Join SHIELD vzw and make a significant difference in the cybersecurity world of healthcare and education.

 

Ander nieuws

Van incident tot crisis: Een Terugblik op eerste sectorale SHIELD oefening voor de Zorgsector

December 11, 2025
Onlangs bracht SHIELD samen met Nviso verschillende leden van zes ziekenhuizen (Jessa, Sint Franciscus, az Vesalius, Ziekenhuis Oost Limburg (ZOL), Heilig Hart Leuven en Uz Leuven) samen voor een intensieve sectoroefening rond cybercrisissen in de zorgsector. In een omgeving waar technologische continuïteit direct verbonden is aan patiëntveiligheid, is het trainen van digitale weerbaarheid een noo

The State of Cybersecurity in Belgian Hospitals

January 13, 2026
Bij drie op vier Belgische ziekenhuizen is er een dringende nood om bijkomende stappen zetten om het vereiste maturiteitsniveau inzake cyberbeveiliging te bereiken. Dat blijkt uit het rapport State of cybersecurity in Belgian Hospitals, opgesteld door SHIELD vzw in samenwerking met de FOD Volksgezondheid. De analyse is gebaseerd op recente maturiteitsmetingen in meer dan vijftig ziekenhuizen versp