The organisation is a major Belgian public transport operator running IT systems that support city-wide operations. Within the IT Security department you will coordinate the organisation's disaster recovery plan and broader business continuity lifecycle, applying Business Continuity Management, BIA and DRP experience to ensure recoverability of mission-critical systems. The role combines hands-on exercise coordination, creation of Business Continuity Plans (CMP, BRP, DRP), and continuous process improvement.
The mission
The IT Security team owns security processes for the operator's backend systems used by operations and customer services. The immediate focus is to formalise and operationalise the disaster recovery plan across application teams, update the business impact analysis and produce maintainable CMP/BRP/DRP documentation that can be activated in a major incident. Your work affects availability of services used by transport operations and frontline teams.
Day to day you will own end-to-end planning and execution of DRP and BRP exercises, coordinate restoration and reconstruction tests for the most critical applications, and draft new emergency procedures where none exist. You will report to the IT Security Manager and collaborate with Service Delivery managers, application owners and infrastructure teams to translate BIA outputs into recovery priorities and test schedules.
Your responsibilities
- Lead the design and implementation of the DRP and associated CMP and BRP documents, producing clear recovery runbooks and activation criteria.
- Plan, run and debrief end-to-end DRP/BRP tests and crisis committee exercises, ensuring lessons learned are tracked and closed.
- Coordinate restoration and reconstruction tests for critical applications, validating recovery time objectives and recovery point objectives with application owners.
- Create and maintain emergency procedures and playbooks where none exist, ready for operational use during incidents.
- Drive continuous improvement through process analysis, test metrics and post-exercise action plans.
- Liaise with Service Delivery and infrastructure teams to integrate BIA findings into testing cadence and recovery priorities.
Your profile
Essential skills
- Proven ability to advise on BCP implementation and manage the full Business Continuity lifecycle, including CMP, BRP and DRP creation.
- Solid experience conducting Business Impact Analysis (BIA) and translating results into recovery priorities.
- Demonstrable track record of organising and leading DRP/BRP tests and crisis management exercises from preparation to debrief.
- Strong skills in creating emergency procedures and operational runbooks that teams can execute under pressure.
- Capability in process analysis and process improvement, closing gaps identified during tests.
- Comfortable working within an IT Security organisation and reporting to senior security management.
Languages
- French or Dutch, C1
- Second language (French or Dutch), B2
- English, B2