Skip to content
MVPeople Group Logo
MVPeopleGroup
GRC & Compliance

Information Security Officer

Zuid-Holland, NederlandConsultancyHybridSenioroverige
Apply nowAsk a question

About the assignment

You shape the security culture and risk management approach for an organisation navigating complex regulatory requirements. Your role bridges technical security, compliance, and business strategy.

You'll establish security policies, oversee incident response procedures, and ensure the organisation meets industry standards. You're responsible for translating technical risk into board-level insights and driving security awareness across all teams.

Your responsibilities

  • Design and maintain information security policies aligned with ISO 27001, NIS2, and relevant industry standards
  • Conduct regular risk assessments and vulnerability reviews across IT infrastructure and business processes
  • Manage security incident response procedures and coordinate with technical teams during breaches or threats
  • Report security metrics and risk status to leadership and governance bodies quarterly
  • Oversee third-party security assessments and vendor risk management processes
  • Develop and deliver security awareness training programmes for all staff levels
  • Monitor compliance with regulatory requirements and audit findings; track remediation timelines

Tech Stack & Tools

Platforms & Tooling

ServiceNow GRCArcherOneTrustSplunkAzure Security Center

Frameworks & Standards

ISO 27001NIS2NIST Cybersecurity FrameworkCOBITDORABIO 2.0

Cloud & Infrastructure

AzureAWS

Methodologies

Risk assessment and analysisSecurity policy developmentIncident response planningCompliance auditing

Certifications (preferred)

CISMCISSPCISACRISC

Must-haves

  • 8+ years in information security, risk management, or compliance roles
  • Deep knowledge of ISO 27001, NIS2, and governance frameworks
  • Experience building and maintaining security policies and procedures
  • Strong communication skills for reporting to executives and boards
  • Proven incident response and breach management experience

Nice-to-haves

  • Experience with GRC tools like ServiceNow GRC or Archer
  • Background in a regulated industry (finance, energy, healthcare)
  • CISM or CISSP certification
  • Exposure to threat landscape and MITRE ATT&CK framework

What we offer

  • Strategic role with real influence on security direction
  • Lead a growing security function with budget ownership
  • Work with executive leadership and governance bodies
  • Exposure to emerging threats and industry best practices
  • Flexible working arrangements and professional development budget
  • Personal guidance from a dedicated MVPeople consultant who knows your niche

The process

1

Introduction

Phone call with your MVPeople consultant (within 24 hours)

2

Match & Brief

We discuss the assignment in detail and prepare you

3

Client meeting

Introduction to the client

4

Start

Contracting and onboarding

Details

Type

Consultancy

Location

Zuid-Holland, Nederland

Work model

Hybrid

Level

Senior

Industry

overige

Posted

31 March 2026

Contact

MVPeople Group

jobs@mvpeoplegroup.com
Apply nowMore information

Related vacancies

IAM / IGAConsultancy

IAM Solution Architect

Arnhem, GEHybrid
View vacancy
IAM / IGAConsultancy

IAM QA Specialist

Arnhem, GEHybrid
View vacancy
GRC & ComplianceConsultancy

Programmamanager Cybersecurity Strategie

Rotterdam, ZHHybrid
View vacancy
Apply now