Skip to content
MVPeople Group Logo
MVPeopleGroup
GRC & Compliance

Senior Information Security Officer (ISO)

AmsterdamConsultancyHybridSeniorgezondheidszorg
Apply nowAsk a question

About the assignment

You join a leading healthcare organisation as Senior ISO, driving structural improvements to their security posture. You operate at the intersection of technical security and compliance, ensuring controls align with regulatory obligations while supporting business objectives.

You manage critical vendor relationships, assess third-party security risks, and translate compliance requirements into actionable security controls. Your technical background enables you to challenge technical teams constructively and recommend proportionate, risk-based solutions.

Your responsibilities

  • Design and maintain an integrated security and compliance framework aligned with healthcare regulations
  • Conduct risk assessments across the organisation and develop mitigation strategies for critical exposures
  • Manage vendor security assessments and ongoing third-party risk monitoring
  • Lead security incident response coordination between technical and compliance teams
  • Develop and deliver security policies, standards, and procedures to the organisation
  • Report security metrics and risk status to senior leadership and the board
  • Oversee security awareness and training programs aligned with compliance obligations

Tech Stack & Tools

Platforms & Tooling

ServiceNow GRCMicrosoft Entra IDCrowdStrikeSplunk

Frameworks & Standards

ISO 27001NIS2NIST Cybersecurity FrameworkHIPAA/AVG compliance requirements

Cloud & Infrastructure

Microsoft AzureHybrid environments

Methodologies

Risk assessment and managementVendor risk managementSecurity control designIncident response coordination

Certifications (preferred)

CISSPCISMCRISC

Must-haves

  • 8+ years in information security, with at least 3 years in compliance or risk management roles
  • Deep understanding of healthcare regulations and data protection requirements
  • Proven track record managing information security programs in complex organisations
  • Strong communication skills—you translate security concepts for non-technical stakeholders
  • Experience with vendor risk assessment and third-party security management

Nice-to-haves

  • Hands-on experience with GRC platforms like ServiceNow or similar tools
  • Background in healthcare or regulated industries (finance, energy)
  • CISSP, CISM or CRISC certification

What we offer

  • Significant influence on security strategy at board level
  • Autonomy to shape security controls and compliance programs
  • Work with modern security tooling in a healthcare setting
  • Competitive salary and flexible working arrangements
  • Personal guidance from a dedicated MVPeople consultant who knows your niche

The process

1

Introduction

Phone call with your MVPeople consultant (within 24 hours)

2

Match & Brief

We discuss the assignment in detail and prepare you

3

Client meeting

Introduction to the client

4

Start

Contracting and onboarding

Details

Type

Consultancy

Location

Amsterdam

Work model

Hybrid

Level

Senior

Industry

gezondheidszorg

Posted

10 March 2026

Contact

MVPeople Group

jobs@mvpeoplegroup.com
Apply nowMore information

Related vacancies

GRC & ComplianceConsultancy

Privacy & Security Project Lead

Den Haag, ZHHybrid
View vacancy
GRC & ComplianceConsultancy

Information Security Officer – Security Office Lead

Zuid HollandHybrid
View vacancy
GRC & ComplianceConsultancy

Information Security Advisor

ZH, NLHybrid
View vacancy
Apply now