I have more than 20 years hands-on experience in delivering innovative, practical, valuable and effective advice to organisations helping them assuring protecting sensitive information, managing relevant IT risks and providing them with policies, procedures and tools to enhance their availability & continuity of services & processes.  

With both the flexibility and the knowledge to deliver genuine added value, I provide pragmatic advice in six core competencies:

  • Risk Management : policies, standards, procedures, guidelines, implementation, trainings (COSO, Risk IT)
  • IT Governance : IT service management, IT sourcing management, strategic alignment, performance management (Val IT, ITIL, OCEG GRC, ISO38500)
  • Information Security Management : information security policies, standards, procedures, guidelines, awareness exercises, implementation, trainings (ISO2700x, COBIT)
  • Business Continuity & Disaster Recovery Management : business impact analysis & risk assessment, disaster recovery & business resumption, testing & auditing, trainings (BS25999)
  • Data Privacy & Protection : strategy and program enabling compliance with proper European and Belgian legislation, data privacy policy design, privacy tool selection, employee awareness programs and trainings.
  • IT Audit & Compliance : external and internal IT audits/controls and trainings (COBIT, GTAG)

In order to do this, I have built my own personal knowledge library based on the following main components for each competency:

  1. general information about the topic
  2. standards and frameworks that exist on the topic
  3. services and components that are generally encountered when confronted with this topic
  4. tools to help 
  5. surveys on the topic
  6. cases on the topic in which I participated
  7. audit programs and risk registers on the topic
  8. marketing materials on the topic
  9. training materials & certification standards that exist for the topic

This library allows me to quickly provide the right information to the client.