Skip to content
MVPeople Group Logo
MVPeopleGroup
GRC & Compliance

Information Security Officer

Den HaagConsultancyHybridSenioroverige
Apply nowAsk a question

About the assignment

A leading organisation is strengthening its security posture and needs an experienced Information Security Officer to take ownership of security governance, risk management, and compliance programmes.

You'll translate board-level security priorities into actionable strategies, oversee policy development, and ensure the organisation meets regulatory requirements across ISO 27001, NIS2, and industry-specific standards.

Your impact: a cohesive security framework that protects assets, reduces breach risk, and demonstrates compliance to stakeholders and regulators.

Your responsibilities

  • Design and maintain security policies, standards, and procedures aligned with organisational risk appetite
  • Develop and execute the annual security roadmap in collaboration with IT leadership and business units
  • Conduct risk assessments and manage risk registers, prioritising remediation activities
  • Oversee compliance audits, certifications (ISO 27001, NIS2), and regulatory reporting
  • Lead incident response planning and post-incident reviews to strengthen defences
  • Report security metrics and KPIs to the board and management committee quarterly
  • Manage third-party security assessments and vendor risk across the supply chain
  • Foster security awareness and culture through training and communication programmes

Tech Stack & Tools

Platforms & Tooling

ServiceNow GRCArcherOneTrust

Frameworks & Standards

ISO 27001ISO 27005 (Risk Management)NIS2 DirectiveNIST Cybersecurity FrameworkCOBIT 2019TIBER-EU

Methodologies

Risk-based governanceIncident response planning (NIST IR)Business continuity and disaster recovery (BCDR)

Certifications (preferred)

CISM (Certified Information Security Manager)CISSP (Certified Information Systems Security Professional)CISA (Certified Information Systems Auditor)

Must-haves

  • 8+ years in information security, risk management, or GRC roles
  • Proven experience designing and implementing security governance frameworks
  • Deep knowledge of ISO 27001, NIS2, and regulatory compliance requirements
  • Strong stakeholder management and board-level communication skills
  • Experience with GRC platforms (ServiceNow, Archer, or equivalent)

Nice-to-haves

  • Background in financial services, healthcare, or critical infrastructure sectors
  • Experience with incident response programme development and tabletop exercises
  • Familiarity with emerging regulations (AI Act, DORA, BIO 2.0)

What we offer

  • Strategic influence on security direction and organisational resilience
  • Competitive salary and comprehensive benefits package
  • Professional development budget for certifications and training
  • Flexible working arrangements and hybrid collaboration
  • Personal guidance from a dedicated MVPeople consultant who knows your niche

The process

1

Introduction

Phone call with your MVPeople consultant (within 24 hours)

2

Match & Brief

We discuss the assignment in detail and prepare you

3

Client meeting

Introduction to the client

4

Start

Contracting and onboarding

Details

Type

Consultancy

Location

Den Haag

Work model

Hybrid

Level

Senior

Industry

overige

Posted

1 April 2026

Contact

MVPeople Group

jobs@mvpeoplegroup.com
Apply nowMore information

Related vacancies

IAM / IGAConsultancy

IAM Solution Architect

Arnhem, GEHybrid
View vacancy
IAM / IGAConsultancy

IAM QA Specialist

Arnhem, GEHybrid
View vacancy
GRC & ComplianceConsultancy

Programmamanager Cybersecurity Strategie

Rotterdam, ZHHybrid
View vacancy
Apply now