CISO

Chief Information Security Officer (CISO)

Rotterdam, ZHConsultancyHybridManagementtransport

About the assignment

A leading organisation in public transport is strengthening its security leadership. You'll inherit a mature security programme and drive it forward, protecting critical infrastructure that serves millions daily.

Your mandate spans strategy, governance, and board-level advisory. You'll assess current security posture, identify transformation priorities, and build stakeholder confidence across operations, IT, and executive leadership.

This is a strategic role where you shape policy, manage vendor ecosystems, and ensure compliance with transport sector regulations. You report directly to the executive team and own the security budget.

Your responsibilities

Define and execute the 3-5 year cybersecurity strategy aligned with business objectives
Assess security posture across critical infrastructure and operational technology
Establish governance frameworks, policies, and incident response procedures
Advise the board and senior leadership on security risks, budget priorities, and regulatory obligations
Build and mentor a security team; manage external consultants and vendors
Monitor emerging threats to transport sector and implement countermeasures
Ensure compliance with NIS2, relevant transport regulations, and industry standards
Lead security culture transformation across the organisation

Tech Stack & Tools

Platforms & Tooling

SIEM platforms (Splunk, Azure Sentinel, or equivalent)Vulnerability management tools (Nessus, Qualys, or equivalent)IAM solutions (Entra ID, CyberArk, or equivalent)GRC platforms (ServiceNow GRC, Archer, or equivalent)

Frameworks & Standards

NIST Cybersecurity FrameworkISO 27001NIS2 DirectiveCOBITMITRE ATT&CK

Cloud & Infrastructure

Azure cloud security (if applicable)AWS security services (if applicable)

Methodologies

Risk-based security managementThreat modellingSecurity architecture reviewBoard reporting and communication

Certifications (preferred)

CISSPCISMCCISO

Must-haves

12+ years in cybersecurity; minimum 5 years in CISO or equivalent leadership role
Proven track record building and scaling security teams and programmes
Strategic mindset: comfortable setting vision, managing budgets, and advising boards
Experience with critical infrastructure, OT security, or regulated sectors (e.g. transport, energy, utilities)
Strong stakeholder management and executive communication skills
Deep knowledge of relevant compliance frameworks (NIS2, ISO 27001, or sector-specific regs)

Nice-to-haves

Background in incident response or threat management in large organisations
Experience with SIEM, vulnerability management, and GRC platforms
Knowledge of transport sector risks, standards, or regulatory environment
Board-level advisory or C-suite reporting experience

What we offer

Strategic leadership role with direct board access and budget ownership
Opportunity to shape security culture and governance in a critical infrastructure organisation
Competitive remuneration and executive benefits package
Executive coaching and professional development support
Collaborative environment with cross-functional stakeholders
Personal guidance from a dedicated MVPeople consultant who knows your niche

The process

Introduction

Phone call with your MVPeople consultant (within 24 hours)

Match & Brief

We discuss the assignment in detail and prepare you

Client meeting

Introduction to the client

Start

Contracting and onboarding

Details

Type

Consultancy

Location

Rotterdam, ZH

Work model

Hybrid

Level

Management

Industry

transport

Posted

23 March 2026

Contact

MVPeople Group

jobs@mvpeoplegroup.com

Apply now More information

Related vacancies

GRC & ComplianceConsultancy