Omschrijving

Senior security / governance consultant with more than 28 years of experience in Information Security, AI Governance, Risk Management, Internal Audit, Compliance and Data Protection across financial services, aviation, manufacturing, public sector and critical infrastructure sectors.

Specialized in the design and implementation of Information Security Management Systems (ISMS), AI Governance frameworks, Enterprise Risk Management programs, DORA readiness initiatives, ISO 27001 implementation, GDPR compliance and cybersecurity governance, with a strong focus on risk management framework alignment and regulatory requirement execution.

Extensive experience supporting executive leadership teams, regulatory compliance programs, internal and external audits, control framework design, risk assessments and security transformation initiatives across multinational organizations, including stakeholder management and communication with business stakeholder groups and stakeholder groups.

Talen

Hongaars
Tweetalig / moedertaal
Engels
Vloeiend
Spaans
Vloeiend
Nederlands
Beperkte professionele capaciteit

Voorkeuren voor werkplek

Kan op locatie werken

Leuven (tot 50km)

GIS-Consulting
Owner, Senior/Executive Advisor
CONSULTANCY & AUDITING
mei 2015 - Vandaag (11 jaren en 1 maand)
Belgium
Financial industry:
New Entity – Information Security Framework Design – ISO2700x and DORA
IT Risk – Compliance and Risk Management – ISO2700x and DORA
Data Protection - Data Classification

Postal industry:
Enterprise Risk Management
GDPR activities (RoPA, DPIA, breach management, etc.)
ITGC / ISO2700k control framework redesign

Manufacturing industry:
SOx-404 ITGC / ISO27k implementation
External audit coordination
GDPR - Process design with data protection requirements incorporated
Risk Management Framework

Aviation industry:
ISMS / ISO27k design and implementation
Internal audits of the ISMS
GDPR Risk Management AI governance ISO 27001 Audit
Verizon Business – Brussels, Belgium
Governance Risk and Compliance - Security Principal Consultan
mei 2011 - april 2015 (3 jaren en 11 maanden)
Delivered compliance consulting and IT audits, providing technical advisory to support business operation continuity and control effectiveness
Performed risk management activities, including business impact analysis and IT risk assessments and proposed practical risk mitigation options
Performed ISO27k gap assessments including regulatory and internal requirements
Designed and implement ISO27k based IT policies and procedures, translating technical requirements into operational controls
Ensured quality in the deliverables in all engagements and managed risks through structured analyst driven reporting, supporting stakeholder management and communication with business stakeholder groups
Ernst & Young
Technology and Security Risk Services - Consultant, Manager, Senior Manager
CONSULTANCY & AUDITING
december 2004 - maart 2011 (6 jaren en 3 maanden)
Led Pan-European audits
Led team of ca. 15 auditors locally across multiple engagements
Managed audit support portfolio (over 60 concurrent clients) and utilization of staff
Engagement budget management Risk Management Audit People management Coaching