Cybersecurity GRC Manager – NIS2 / ISO 27001 (Charleroi, Hybrid)

A public-sector player in the Walloon water and utilities sector is reinforcing its cybersecurity governance and is looking for a Cybersecurity GRC Manager to structure and drive its Governance, Risk & Compliance approach.

Working hand in hand with the CISO, you will build and maintain the Information Security Management System (ISMS) and steer the organisation's compliance roadmap in a NIS2-driven context. Your typical week mixes governance, risk and compliance: implementing and aligning the ISMS with ISO 27001:2022, leading risk assessments (ISO 27005), ensuring GDPR compliance, preparing and following up on audits, defining policies and controls, and reporting on the overall security posture. You may rely on GRC tooling (OneTrust, ServiceNow GRC, Archer or similar).

What makes this mission attractive: a critical-infrastructure environment where compliance truly matters, a structuring role with real visibility, and the opportunity to shape the GRC framework as NIS2 obligations take shape.

This is a long-term hybrid mission based in the Charleroi area, open to freelance profiles.

This opportunity is offered by FuturWork, a recruitment and staffing firm specialised in IT and Cybersecurity profiles, operating across Belgium, Luxembourg, France and the UK.

1) 3 to 5 years of experience in Cybersecurity GRC / information security governance | 2) Strong knowledge of ISO 27001:2022 (Lead Implementer) and ISMS/SMSI build & maintenance | 3) Hands-on with risk management (ISO 27005) and NIS2 requirements | 4) Solid understanding of GDPR/RGPD and audit preparation | 5) Experience with GRC tooling (OneTrust, ServiceNow GRC, Archer or similar) is a plus | 6) Comfortable working alongside a CISO and engaging stakeholders | 7) French native speaker; English is a nice-to-have