NGUISFR

About

Guillaume Nguyen

Cybersecurity and GRC consultant, founder of NGUIS, and researcher in software engineering and cybersecurity at the University of Namur.

We combine field experience in governance, risk and compliance with research into the relationship between regulations and software systems. This dual perspective helps turn complex requirements into practical decisions and actions.

Portrait of Guillaume Nguyen

Two complementary perspectives

Practice and research, each in its proper place.

Professional practice

Since 2018, Guillaume has worked on governance, risk assessment and treatment, compliance and cybersecurity programme management. His experience includes healthcare, transport, energy, telecommunications, the public sector, critical infrastructure and financial services.

Explore consulting services

Academic work

At the University of Namur, his research focuses on cybersecurity compliance and cyber-physical systems. His thesis examines how regulations can be better harmonised with source code and other software artefacts.

Explore the research

Experience

Professional background

Current

  1. 2022 - present

    Founder and cybersecurity consultant

    Nguyen Information Security (NGUIS)

    • ISO 27001 and NIS2 support
    • Risk assessments and security governance
    • Policies, procedures and compliance advice

  2. 2022 - present

    Researcher in software engineering and cybersecurity

    University of Namur

    • Research on cybersecurity compliance and cyber-physical systems
    • Project coordination, industry collaboration and student supervision

Completed experience

  1. 2026

    Lecturer

    Haute École de la Province de Namur

    • Teaching and sharing applied cybersecurity practices

  2. November 2025 - April 2026

    Visiting researcher

    National Institute of Informatics, Tokyo

    • Research collaboration on cyber-physical systems, compliance and software engineering

  3. September 2020 - 2022

    Cybersecurity specialist

    ACIS

    • ISO 27001 and NIS implementation in the healthcare sector
    • Security controls reviews and risk assessments
    • Technical design of security solutions, including firewalls and SIEM
    • Logical architecture and review of applicable European directives and regulations

  4. September 2018 - September 2020

    Cybersecurity consultant

    Deloitte Belgium

    • Certification authority: strategic support, GDPR compliance and eIDAS alignment
    • Guarding and security: crown jewel assessment and logical architecture modelling
    • Telecommunications: security policies
    • Energy: CRM Decree
    • Public transport: internal privacy and information security audit
    • Public sector and EU institutions: technical cybersecurity advisory
    • Support across multiple internal projects

Education and skills

Academic background, fields of work and languages.

Education

  • PhD in software engineering, since 2022University of Namur
  • Master of computer science, 2021-2023University of Namur
  • Master of business and information systems engineering, 2016-2019KU Leuven
  • Master of business engineering, analytics and digital business, 2016-2019University of Namur

Skills

  • NIS2
  • ISO 27001
  • Cybersecurity governance
  • Risk assessment
  • Risk treatment
  • Security roadmaps
  • Cyber resilience
  • OT security
  • Cyber-physical systems

Languages

  • FrenchNative
  • EnglishFluent
  • DutchProfessional

A professional or academic enquiry?

Email us with a short description of your context.

info@nguis.com