Cyber Governance Specialist

Luxembourg Digital & IT Luxembourg On-site

TMC Luxembourg is looking for a cyber governance specialist for one of its clients.
- About The Member Company
- We are a global high-tech consultancy company with a team of entrepreneurial engineers, scientists, and digital experts from around the world. Together we form a fast-growing and proud community. We offer consultancy services to high-profile clients globally in diverse service areas, such as:

- Technology & Engineering
- Energy & Renewables
- Life sciences & Pharma
- Digital & IT

**About this vacancy**:
We are looking for a Cyber Governance Specialist to strengthen cybersecurity governance, risk management, and compliance capabilities within a highly regulated and complex digital environment. The selected consultant will play a key role in defining cybersecurity frameworks, coordinating risk mitigation strategies, and ensuring regulatory alignment across organizational entities.

Your main responsibilities will include:

- Defining cybersecurity governance frameworks and strategic measures to protect digital systems, services, and assets.
- Preparing and maintaining comprehensive risk assessment methodologies and threat landscape analyses, ensuring continuous improvement.
- Managing cybersecurity policy alignment and ensuring compliance with organizational and regulatory standards.
- Developing and maintaining audit trails, documentation, and governance processes related to cybersecurity.
- Coordinating risk management strategies, compliance reviews, and reporting activities.
- Preparing risk and compliance reports for governance bodies, auditors, and cybersecurity leadership (LISO/SSO).
- Mentoring and supporting team members on governance and compliance practices.
- Collaborating closely with cybersecurity leaders, IT operational teams, auditors, and external governance stakeholders.

**What we expect from you**:

- Bachelor’s degree or higher in cybersecurity, information systems, or a related field.
- Proven experience in cybersecurity governance, risk management, and regulatory compliance within complex environments.
- Strong understanding of cybersecurity frameworks and standards (e.g., ISO 27001, NIST, CIS Controls).
- Demonstrated ability to develop risk mitigation strategies and implement cybersecurity policies.
- Excellent analytical and problem-solving skills for complex cybersecurity and compliance challenges.
- Strong communication and presentation skills, with the ability to engage both technical teams and executive stakeholders.
- Experience producing structured documentation such as risk assessments, governance reports, and audit documentation.
- Relevant certifications in cybersecurity governance or risk management (e.g., CISSP, CISM, CRISC, ISO 27001 Lead Auditor/Implementer).
- Adaptability to fast-changing technologies and regulatory environments.
- Collaborative mindset, capable of working in a multicultural, international context on multiple large-scale projects.
- Fluency in English (B2/C1) required; French is an advantage.

**What you can expect from us**:
We are truly unique thanks to our Employeneurship model which is a true innovation for the High Technology consulting business. It is the business relationship of the 21th century for high skilled technical professionals.

It is built around 5 main pillars:

- You will have a permanent employment contract, offering you stability and security ;
- You will get to know your market value and have a share in the profit your work generates thanks to the individual profit sharing ;
- We will support you with a one-on-one coaching and trainings designed to help you develop your entrepreneurial skills ;
- The competence cells structure, provides you with a strong meaningful and relevant network ;
- The entrepreneurial lab : a playground for new ideas and a potential launching for start-ups.

The 5 basic principles of **employeneurship**
- A long-term working relationship
- Enjoy the security of a long-term contract and a stable source of income while getting the opportunity to work at diverse projects.
- Individual profit sharing
- Full transparency. That’s it. For each of your projects, you know your hourly rate, your costs, and your individual performance-based profit sharing, all in order to stimulate your inner entrepreneur.
- Business cells
- Our employeneurs are grouped in business cells based on their technical expertise. They are small, focused and function as high-grade knowledge networks. And as buzzing communities of close colleagues.
- YOUniversity
- Every employeneur drives their own career. Together, we make a plan for personal and professional growth. Receive personal coaching and an extensive training budget to keep developing yourself and deliver outperformance at our clients.
- The Entrepreneurial Lab
- Work on your technical dreams in our lab. Collaborate with others in multidisciplinary teams to unlock out-of-the-box thinking and innovative ideas as well as entrepr