Skip to content
MVPeople Group Logo
MVPeopleGroup
GRC & Compliance

Information Security Officer

Zuid HollandConsultancyHybridSenioroverige
Apply nowAsk a question

About the assignment

You oversee the organisation's information security program across people, process, and technology. You develop security policies, manage risk assessments, and ensure compliance with regulatory requirements like ISO 27001 and industry-specific standards.

You bridge business needs with security controls. You advise leadership on cyber risks, manage incident response planning, and drive security awareness across teams. You evaluate third-party vendors and manage security budgets effectively.

Your responsibilities

  • Design and maintain security policies, standards, and procedures aligned with ISO 27001 and regulatory frameworks
  • Conduct risk assessments and vulnerability evaluations across IT infrastructure and business processes
  • Manage compliance monitoring and audit preparation for internal and external audits
  • Coordinate incident response planning and lead post-incident reviews
  • Evaluate and manage relationships with security vendors and service providers
  • Report security metrics and risk status to board and executive leadership quarterly
  • Drive security awareness and training programs across the organisation
  • Develop and monitor KPIs for security controls effectiveness

Tech Stack & Tools

Platforms & Tooling

ServiceNow GRCArcherSplunk or similar SIEMvulnerability scanning toolsidentity management systems

Frameworks & Standards

ISO 27001ISO 27002NIST Cybersecurity FrameworkCOBIT 2019NIS2 Directiveindustry-specific regulations

Cloud & Infrastructure

AWS or Azure security configurationscloud compliance tools

Methodologies

Risk assessment and risk managementthreat modelingsecurity control frameworksincident response planning

Certifications (preferred)

CISM (Certified Information Security Manager)CISSP (Certified Information Systems Security Professional)CISA (Certified Information Systems Auditor)CRISC (Certified in Risk and Information Systems Control)

Must-haves

  • 8+ years in information security, compliance, or risk management roles
  • Proven experience implementing ISO 27001 or equivalent security frameworks
  • Strong knowledge of compliance requirements and audit processes
  • Experience managing security budgets and vendor relationships
  • Excellent communication skills for board-level reporting

Nice-to-haves

  • Background in GRC tooling such as ServiceNow or Archer
  • Experience with incident response planning and tabletop exercises
  • Knowledge of cloud security compliance and multi-cloud environments
  • Familiarity with NIST, COBIT, or other security maturity models

What we offer

  • Lead security strategy with direct board influence
  • Competitive salary and comprehensive benefits package
  • Professional development budget for certifications and training
  • Collaborative team environment with modern security tools
  • Personal guidance from a dedicated MVPeople consultant who knows your niche

The process

1

Introduction

Phone call with your MVPeople consultant (within 24 hours)

2

Match & Brief

We discuss the assignment in detail and prepare you

3

Client meeting

Introduction to the client

4

Start

Contracting and onboarding

Details

Type

Consultancy

Location

Zuid Holland

Work model

Hybrid

Level

Senior

Industry

overige

Posted

11 May 2026

Contact

MVPeople Group

jobs@mvpeoplegroup.com
Apply nowMore information

Related vacancies

Data Security & DLPConsultancy

Privacy Data Cleansing Specialist

Amsterdam, NHHybrid
View vacancy
IAM / IGAConsultancy

Senior IAM Engineer – Control Automation & DevOps

Utrecht, UTHybrid
View vacancy
GRC & CompliancePermanent

Senior Consultant Information Security

RandstadHybrid
View vacancy
Apply now