Skip to content
MVPeople Group Logo
MVPeopleGroup
GRC & Compliance

Senior IT Risk Expert (1st Line)

AmsterdamConsultancyHybridSeniorbankwezen
Apply nowAsk a question

About the assignment

A leading organisation in Arnhem strengthens its internal control team with an experienced IT Risk Expert on a temporary basis. You identify risks across IT infrastructure, assess control effectiveness, and ensure DORA compliance across critical functions.

Your focus: translate regulatory requirements into actionable risk frameworks, support audit processes, and embed cybersecurity controls into business operations. You work closely with risk management, compliance, and security teams to reduce exposure and maintain audit readiness.

Your responsibilities

  • Identify and assess IT risks across infrastructure, systems, and processes using structured methodologies
  • Map controls to regulatory requirements (DORA, ISO 27001) and validate their effectiveness
  • Support internal and external audit cycles with evidence, documentation, and remediation tracking
  • Design and maintain risk registers and dashboards for management reporting
  • Recommend control enhancements and prioritise remediation based on risk appetite
  • Collaborate with security, compliance, and business teams on risk mitigation initiatives
  • Monitor emerging threats and regulatory changes affecting the control environment

Tech Stack & Tools

Platforms & Tooling

ServiceNow GRCArcherExcel/Power BI for risk dashboards

Frameworks & Standards

DORA (Digital Operational Resilience Act)ISO 27001NIST Cybersecurity FrameworkCOBIT

Methodologies

Risk assessment and quantificationControl design and testingInternal audit supportRegulatory mapping

Certifications (preferred)

CISACRISCCISSP

Must-haves

  • 5+ years in IT risk, internal controls, or audit roles
  • Strong knowledge of DORA and/or ISO 27001 compliance
  • Experience designing and validating control frameworks
  • Fluent in English; Dutch is a plus
  • Comfortable working with risk management and GRC tools

Nice-to-haves

  • CISA or CRISC certification
  • Experience in financial services or regulated environments
  • Exposure to security incident response and breach investigation

What we offer

  • Temporary contract with flexibility and clear scope
  • Exposure to DORA and modern compliance frameworks
  • Collaborative team with strong security culture
  • Direct impact on control maturity and audit outcomes
  • Arnhem location with modern facilities
  • Personal guidance from a dedicated MVPeople consultant who knows your niche

The process

1

Introduction

Phone call with your MVPeople consultant (within 24 hours)

2

Match & Brief

We discuss the assignment in detail and prepare you

3

Client meeting

Introduction to the client

4

Start

Contracting and onboarding

Details

Type

Consultancy

Location

Amsterdam

Work model

Hybrid

Level

Senior

Industry

bankwezen

Posted

19 March 2026

Contact

MVPeople Group

jobs@mvpeoplegroup.com
Apply nowMore information

Related vacancies

GRC & ComplianceConsultancy

Privacy & Security Project Lead

Den Haag, ZHHybrid
View vacancy
GRC & ComplianceConsultancy

Information Security Officer – Security Office Lead

Zuid HollandHybrid
View vacancy
GRC & ComplianceConsultancy

Information Security Advisor

ZH, NLHybrid
View vacancy
Apply now