Company News

In the Spotlight: Senior Security Consultant, Tim Vanschoenbeek

In the spotlight: Senior Security Consultant
In the Spotlight: Senior Security Consultant, Tim Vanschoenbeek

On the combo with privacy, transparency and opportunities for advancement within the organisation.

Hello Tim, it’s great to have you in our spotlight! Let’s start with an easy one: How would you describe CRANIUM in 3 words?

Fun, diverse, and transparent.

Interesting! You’re a senior information security consultant. What does a typical day look like for you?

I work as a Security Consultant at CRANIUM. The types of clients I carry out projects for are very diverse, ranging from start-ups and scale-ups to financial institutions and even critical infrastructure.

My range of tasks is also very extensive. I guide clients in implementing data protection and information security, which varies from determining strategy to providing advice on very specific issues. In practice, I find that larger clients are often more mature, making the assignment more defined. With smaller clients, it’s a matter of setting up the basics and implementing best practices.

That does sound very diverse! What makes your role so interesting?

I enjoy being able to combine the knowledge I’ve gained from my IT and Security background with Privacy; I’m not stuck in a specific domain.

Are there any misconceptions about your role?

When I talk about Privacy, many people think I have a ‘legal’ background, but that’s not actually the case. I started my career at a service desk, then progressed to system administrator and further developed my skills in security and privacy.

When I talk about Privacy, many people think I have a ‘legal’ background, but that’s not actually the case.

Given that these domains are closely related and IT knowledge is really useful in a privacy context, you don’t necessarily need a legal background to work as a privacy consultant. A healthy dose of interest in both domains is a must, though.

We can only agree! Are there any moments with clients, for example, that you’re particularly proud of?

That would be my first client at CRANIUM. Another organisation had been preparing for an ISO 27001 audit for some time but ultimately struggled with the final steps. Together with a colleague, we managed to complete this in just three months. I’m quite proud of that; the client was happy, and so were we.

Indeed, a great achievement! Can you tell us what convinced you to eventually work for CRANIUM?

I found the job posting on LinkedIn, and the combination of Privacy and Security immediately appealed to me. I applied and was invited for an interview with Stéphanie (Talent Recruiter) and the Business Manager in Security. It was a very pleasant conversation; I immediately noticed that the company’s values were close to what I was looking for: openness, transparency, and trust in people, which I value greatly. After that conversation, I had a second interview that also went smoothly, and within two weeks, I had signed my contract.

What makes CRANIUM unique as an employer, in your opinion?

CRANIUM is unique because it’s much larger than some other established consultancies in the Privacy field, yet they maintain that personal touch and family atmosphere internally. There’s no great distance from upper management. Anne (CEO) and Alex (Founder) are very accessible, which is pleasant. You know everyone by name and can easily turn to each other for questions or advice. The fact that you can readily share experiences and knowledge with each other is a real added value.

And one last question to wrap up: What opportunities are there to work on challenging projects and grow?

We work with a system where juniors who are just starting in our sector can begin a project alongside an experienced profile. This way, they can learn and grow faster, and we can offer our clients the best quality.

As experience grows, so do the opportunities to take on more strategic work. The ultimate goal is to take on the CISO role, where you act as a trusted partner in outlining the IT and Security framework together with the client.

Moreover, after some time, you can also take on an internal role, such as Mentor, Specialist, or Manager. This allows you to further develop your people, knowledge, or business skills in addition to your consulting skills.

Thank you very much for your time and great answers, Tim!

Passionate about information security (and/or privacy?) and keen to support organisations strategically and operationally in this area? We’re looking for senior security profiles to strengthen our team!

Share this:

Written by

Charlotte Bourguignon

Charlotte Bourguignon

Hi! How can we help?

In need of internal privacy help or an external DPO? Reach out and we’ll look for the best solution together with you.