GRC & Compliance
Information Security Advisor
AmsterdamConsultancyHybridSenioroverige
About the assignment
You advise on information security strategy and implementation across the organisation. You identify vulnerabilities in processes, systems, and governance—then drive solutions that stick.
You balance security hardening with business enablement. Your role bridges technical teams, management, and the board, translating risk into action.
Your responsibilities
- Design and implement information security policies aligned with ISO 27001, NIS2, and sector-specific regulations
- Conduct security risk assessments on critical systems, infrastructure, and processes
- Monitor compliance with legal and regulatory obligations; prepare audit reports
- Advise leadership on security investments and remediation priorities
- Build security awareness and training programmes for staff at all levels
- Manage vendor security assessments and third-party risk
- Lead incident response coordination and post-incident reviews
- Stay current on emerging threats and adjust defences accordingly
Tech Stack & Tools
Platforms & Tooling
ServiceNow GRCArcherOneTrustvulnerability scanning tools
Frameworks & Standards
ISO 27001NIS2NIST CSFCOBITCIS Controls
Cloud & Infrastructure
AzureAWShybrid environments
Methodologies
Risk managementthreat modellingsecurity auditsGAP analysis
Certifications (preferred)
CISMCISSPCRISCCISA
Must-haves
- 5+ years information security or IT risk management experience
- Deep knowledge of ISO 27001, NIS2, or equivalent compliance frameworks
- Ability to communicate security concepts to non-technical stakeholders
- Proven track record advising on security strategy and governance
- Strong analytical and problem-solving skills
Nice-to-haves
- Experience with GRC platforms (ServiceNow, Archer, OneTrust)
- Background in your organisation's industry sector
- Knowledge of threat intelligence and MITRE ATT&CK framework
What we offer
- Influence security strategy at board level
- Work across all business units—no single silo
- Continuous learning budget and certification support
- Flexible working arrangements
- Competitive compensation package
- Personal guidance from a dedicated MVPeople consultant who knows your niche
The process
1
Introduction
Phone call with your MVPeople consultant (within 24 hours)
2
Match & Brief
We discuss the assignment in detail and prepare you
3
Client meeting
Introduction to the client
4
Start
Contracting and onboarding
Details
Type
Consultancy
Location
Amsterdam
Work model
Hybrid
Level
Senior
Industry
overige
Posted
23 March 2026
Contact
MVPeople Group
jobs@mvpeoplegroup.com