GRC Officer (M/F/X)


Since its creation more than 50 years ago, the Sodexo group has been the world leader in quality of life services.

At Sodexo Benefits and Rewards Services, we’ve made our mark on the world by helping clients give their employees personalized experiences, every day. Our benefit platforms and payment solutions are already used by 440,000 clients and 36 million of their employees in 32 countries.

At Sodexo Benefits & Rewards Services, we are proud of our commitments to environmental sustainability, our focus on employment equity and diversity, our new ways of working independently and flexibility for the well-being of our talents. Joining us means evolving in a collaborative, innovative environment, in which each employee is recognized and receives the support they need for their development. We firmly believe that the quality of life of our clients and service consumers begins with our own people. Consequently, your wellbeing at work is one of our priorities.

Working with us is an opportunity to impact the future of employee experience and, ultimately, the world around us. But it’s also your chance to make an impact every day, putting a part of yourself into exciting digital products and touching the lives of millions of consumers.

We’re a global, multicultural business where every contribution counts and every day is a chance to inspire others and take inspiration from your colleagues.

We’re accelerating our growth on a global scale, combining the reach and stability of Sodexo with our unique position as an incubator of innovation. As part of the team, you’ll help us continue that growth and our landmark digital transformation.

Now, we’re inventing entirely new ways to influence and enrich the lives of employees worldwide.


Our mission at the IS&T Department is to enhance our business. In order to reach our goal, we have to set up and manage highly accessible hybrid environments, such that high volumes of transactions can be handled securely. Our industry evolves at a fast pace. This challenges us to keep abreast of new developments in digitalization, security, compliance to regulatory requirements, new technologies (IoT, Blockchain, ePayment, …),

Your mission

  • Define, implement, operate and maintain the local Information Security Governance, Risk & Compliance.
  • Report to the local CISO, CIO and Executive Committee.

Your main responsibilities

Information Security & Technology Governance

  • Define, implement and maintain the local Security & Continuity policies, governance and processes in accordance with Group security policies, internal control and market standards,
  • Develop 3 lines of defense,
  • Raise and maintain awareness within the organization of IS&T Governance, Risk and Business Continuity,
  • Define & monitor information security performance and risk indicators (KRI & KPI’s),
  • Answer clients & supplier’s questionnaires.

IT Risk Management

  • Develop IT risk management framework based on market standards,
  • Develop IT risk culture within the IS&T department & the executive committee,
  • Advise ExCo and IT management regarding IT risk & security decisions,
  • Conduct IT security & compliance risk assessment,
  • Monitor and report the top IT risks of the company.

Business Continuity

  • Conduct BC risk assessment,
  • Conduct BIA with the support of ExCo & experts,
  • Develop, maintain and test BCP’s as per business requirements,
  • Advise on BC in project development and in supplier management,

Disaster Recovery

  • Develop, maintain and test DRP’s as per business requirements,
  • Advise on DR in project development and in supplier management,
  • Monitor and report the overall DRP readiness of the company and its critical suppliers,
  • Monitor market trends on DR capabilities.

IS&T Compliance

  • Assure yearly reviews of ISO27001 (controls and documentation),
  • Ensure regulatory compliance of the information system and data,
  • Ensure compliance with the internal codes of conduct, policies and procedures,
  • Ensure compliance with clients, customers and partners contractual agreements,
  • Support local DPO to develop and maintain the Data Privacy Program,
  • Support internal control for IS&T compliance matters.


  • At least 5 years of experience in a similar role;
  • Proven experience in Governance, Risk & Compliance, GDPR
  • Knowledge and experience of frameworks such as ISO 27001, ISO 27002, ISO 22301, ISO 31k, ISO 20k, COBIT, ISF,
  • Possession of certifications such as CISA, CRISC, CGEIT, ISO 22301 LI, ISO 31000 LI, ISO 27k LI,
  • Excellent communication skills, both in writing and in presenting;
  • Customer centric, diplomatic and ability to occasionally discuss third party risk, assurance with our clients,
  • Pragmatic and result oriented,
  • Ability to engage with technical and non technical audiences at various levels
  • Able to work autonomously and appreciate teamwork,
  • Assertive, constructive and proactive team player,
  • Strong analytical and solution oriented skills;

At Sodexo we are dedicated to building a diverse, inclusive and authentic workplace, so if you are excited about this role but your past experience doesn’t align perfectly with every qualification in the job description, we encourage you to apply anyways. You may be just the right candidate for this or other roles.


  • Fluency in French and English is a must (oral and written). Dutch is a plus.


  • When you start your job, you will receive adequate onboarding and training which will allow you to have a good command of Sodexo products and related procedures.
  • We offer you a training course with real opportunities for development both within the team and within the company.
  • A full-time contract (on payroll)
  • A competitive salary with numerous extra-legal benefits.
  • A pleasant work environment in a dynamic and inspiring company.

Quality of life at work:

  • A work-life balance with possibility for home office
  • A concierge service that offers various services: dry cleaning, ironing, shoe repair, purchase of gifts, etc.
  • A wide choice of sustainable and delicious meals in our company restaurant
  • A variety of sports (badminton, mini football, basketball, meditation and yoga)

  • Online op:wo 19 oktober 2022
  • Locatie: Brussels/Telework (hybrid)

Sodexo - Benefits and Rewards Services

Pleinlaan 15 Boulevard de la Plaine
1050 Brussels


Voor meer informatie:
op het nummer: 0475480420
Even geduld, uw aanvraag wordt verwerkt
Mail naar uw vrienden
Mail(s) succesvol verstuurd
Er is een fout opgetreden, gelieve contact op te nemen met uw systeem administrator