GRC Consultant

GRC Consultant (Governance, Risk & Compliance)

MISSION DESCRIPTION

Our client operates in a complex environment leveraging various solutions across Governance, Risk and Compliance, including Privacy management, Audit management, and Third Party Risk Management. The mission aims to identify all related requirements within this scope, define a blueprint for implementation (including tooling selection), and deliver a roadmap for deployment. Following roadmap approval, the GRC Consultant will lead the execution of implementation, ensuring alignment with requirements and key stakeholders.

The GRC Consultant will identify stakeholders across all relevant departments to elicit their requirements regarding GRC processes. They will inventory currently deployed tools, map their functional coverage, and assess their fit with the organisation's standards (investment strategy, technology alignment).

Based on this analysis, the consultant will evaluate tooling options, propose a scope and tooling strategy, and build an implementation roadmap covering efforts, resources, and licensing needs.

Post-validation, they will take the lead on implementation execution, securing alignment with stakeholders and defined requirements throughout.

CONFORMITY CRITERIA (mandatory)

• Trilingual proficiency: English (min. B2), French and Dutch (min. C in one, min. B in the other)

• Willingness to work on-site in Brussels at least 2 days per week

• Proven experience as lead (project manager or equivalent) on at least one GRC tooling selection and implementation project in an organisation with more than 1,000 employees

• Must have legal authorisation to work in Belgium

• At least one of the following certifications: ISO/IEC 27001 Lead Implementer or Lead Auditor, or an ISACA certification (preferably CGEIT and/or CRISC)

EVALUATION CRITERIA

• Stakeholder management experience, including senior management level and cross-departmental stakeholders with potentially differing expectations

• Communication skills: meeting facilitation at all levels (technical and non-technical, operational to senior management), steering committee facilitation and presentation ability

• Experience in capturing business requirements and defining tooling strategies for at least 2 GRC tooling selection & implementation projects

• Experience in defining roadmaps and leading implementation for at least 2 GRC tooling implementation projects

• At least 5 years of experience in the definition and implementation of GRC concepts and processes

• Practical experience in projects supporting regulatory framework compliance (NIS2, ISO 27001, GDPR)

• At least 5 years of experience implementing GRC tools, covering at least 2 different tools (SAI360, ServiceNow, etc.)

• Experience in complex environments: large-scale projects, multi-stakeholder management at senior levels, ambiguity management

• At least 3 years of experience leading projects as Project Manager, applying multiple methodologies: Agile, Waterfall, budget management, project planning, resource planning, project reporting