Brussels, Brussels Region, Belgium
As a Chief Information Security Officer (CISO) with deep expertise in Information Security, Risk Management (ISRM), and Cyber Defence, I help organizations protect critical assets while aligning security strategies with business objectives. I bridge the gap between technical operations and executive leadership, enabling informed decision-making, proactive risk management, and enterprise resilience. I have successfully built and transformed security programs across multiple sectors, including pharma, finance, and technology, ensuring compliance with ISO 27001, NIST, NIS2, CIS, GDPR, SOx, and GxP standards. My experience spans CISO-as-a-Service, SOC and CSIRT management, digital forensics, insider risk, threat intelligence, incident response, and cloud security, consistently delivering measurable improvements in risk posture, security maturity, and KPI-driven outcomes. As a trusted advisor to executives and boards, I provide strategic guidance on governance, risk, and compliance, translating technical vulnerabilities into actionable business insights. I lead cross-functional teams, oversee vendor engagements, and foster a culture of security awareness across enterprises. Core Strengths ✔ Cybersecurity Strategy & Governance ✔ Information Security Risk Management (ISRM) ✔ Threat Intelligence, Incident Response & Digital Forensics Analysis (IRM) ✔ Compliance & Regulatory Adherence (ISO 27001, NIS2, SOx, GxP) ✔ Security Architecture & Cloud Security ✔ Leadership, Stakeholder Engagement & Executive Advisory Passionate about securing the digital future, I thrive in dynamic environments where innovation, resilience, and strategic thinking are paramount. Let’s connect to drive security transformation and enterprise resilience together.
Lead enterprise information security, risk, and compliance programs for a pharma and tech research environment, providing strategic oversight across penetration testing, threat and vulnerability management, and security incident response. Directed security investigations, digital forensics, and GRC initiatives, ensuring alignment with internal policies, regulatory requirements, and industry frameworks, including SOC, SOx (Blackline), NIS2, and GxP-qualified systems and requirements. Managed vendor engagements through RFP/RFI/RFQ processes and oversaw SOC operations. Advised executive leadership on risk exposure, security maturity, and KPI-driven metrics, translating technical vulnerabilities into actionable business insights and driving organizational resilience. Successfully led the implementation of NIS2 compliance across critical systems, strengthening cybersecurity posture, regulatory alignment, and operational integrity in R&D.
Provide strategic oversight and governance, guiding long-term organizational sustainability. Advise on risk management, financial stewardship, and fiduciary responsibilities, oversee CEO performance, and engage stakeholders. Represent the organization externally and advocate for its mission, ensuring alignment between leadership decisions and strategic objectives.
The Battlefield of Things 2: Drones was a two-and-a-half-day innovation event that brought Belgian Defence personnel together with industry experts, drone enthusiasts, researchers, and students.
Partner with executive leadership to define and drive enterprise cybersecurity strategy, risk management, and governance aligned with industry best practices. Assess incident response, security operations, and enterprise programs, translating technical vulnerabilities into business risk and actionable recommendations. Lead the design and implementation of sustainable improvements, including GRC tools, policies, processes, and organizational models.Facilitate executive-level decision-making through risk reporting, strategic roadmaps, and maturity assessments that strengthen information protection, compliance, and business resilience.
• Information Security Governance and Risk Management • Penetration Testing / Planning • Security Investigations & Forensic Analysis • RFI / RFP • Security Incident Management • Threat & Vulnerably Management
Progressed from Cyber Security Specialist to Head of Penetration Testing, leading enterprise cybersecurity strategy and technical assurance. Directed penetration testing, threat and vulnerability management, and forensic investigations across complex enterprise environments. Oversaw information security governance, risk management, incident response, and compliance programs, implementing standards aligned with ISO 27001, NIST CSF, PCI DSS, SOC 2, and DORA. Served as a strategic advisor to executives and board members, translating technical vulnerabilities into business risks, reporting risk exposure, security maturity, and KPI-driven metrics, and driving organizational resilience through policies, processes, and technology improvements.