Governance, Risk & Compliance (GRC) Consultant (Brussels, Hybrid)

A major Belgian organization operating large-scale public infrastructure is modernizing its approach to Governance, Risk and Compliance (GRC). Today it relies on a patchwork of solutions across privacy management, audit management and third-party risk, and now wants to define a clear scope, select the right tooling and deliver a roadmap for implementation.

As GRC Consultant, you own this end to end. A typical week blends stakeholder interviews across departments to capture requirements, mapping the tools currently in use against organizational standards, and analyzing how well they fit. From there you evaluate tooling options, recommend a scope and tooling strategy, and build the implementation roadmap covering effort, resources and licensing. Once the roadmap is validated, you take the lead on execution, keeping delivery aligned to stakeholders and to the agreed requirements.

This is a rare opportunity to shape a GRC transformation from blank page to live implementation inside a large, complex environment, with direct exposure to senior stakeholders and genuine influence over the outcome.

Depending on your profile, this assignment is open either on a freelance basis or as a permanent position.

FuturWork is a specialist Risk & Compliance staffing firm operating across Belgium, Luxembourg, France and the UK, connecting experienced consultants with high-impact missions at leading organizations.

1) 5+ years defining and implementing GRC concepts, processes and tooling, including hands-on experience with at least two different GRC tools (e.g. ServiceNow, SAI360) | 2) Proven track record leading at least one GRC tooling selection and implementation project in an organization of 1,000+ employees | 3) At least one of the following certifications: ISO/IEC 27001 Lead Implementer or Lead Auditor, or an ISACA certification (CGEIT and/or CRISC preferred) | 4) 3+ years leading projects as Project Manager across Agile and Waterfall, including planning, budgeting, resourcing and reporting | 5) Practical experience applying regulatory frameworks such as NIS2, ISO 27001 and GDPR | 6) Fluent English (min. B2) plus Dutch or French at C level, with the second language at B level or above; legal authorization to work in Belgium | 7) Strong stakeholder management and facilitation skills, confident engaging senior management and steering committees in complex, ambiguous environments