CISO

Chief Information Security Officer (CISO)

Rotterdam, ZHConsultancyHybrideManagementtransport

Over de opdracht

A leading organisation in public transport is strengthening its security leadership. You'll inherit a mature security programme and drive it forward, protecting critical infrastructure that serves millions daily.

Your mandate spans strategy, governance, and board-level advisory. You'll assess current security posture, identify transformation priorities, and build stakeholder confidence across operations, IT, and executive leadership.

This is a strategic role where you shape policy, manage vendor ecosystems, and ensure compliance with transport sector regulations. You report directly to the executive team and own the security budget.

Jouw werkzaamheden

Define and execute the 3-5 year cybersecurity strategy aligned with business objectives
Assess security posture across critical infrastructure and operational technology
Establish governance frameworks, policies, and incident response procedures
Advise the board and senior leadership on security risks, budget priorities, and regulatory obligations
Build and mentor a security team; manage external consultants and vendors
Monitor emerging threats to transport sector and implement countermeasures
Ensure compliance with NIS2, relevant transport regulations, and industry standards
Lead security culture transformation across the organisation

Tech Stack & Tools

Platforms & Tooling

SIEM platforms (Splunk, Azure Sentinel, or equivalent)Vulnerability management tools (Nessus, Qualys, or equivalent)IAM solutions (Entra ID, CyberArk, or equivalent)GRC platforms (ServiceNow GRC, Archer, or equivalent)

Frameworks & Standaarden

NIST Cybersecurity FrameworkISO 27001NIS2 DirectiveCOBITMITRE ATT&CK

Cloud & Infrastructure

Azure cloud security (if applicable)AWS security services (if applicable)

Methodieken

Risk-based security managementThreat modellingSecurity architecture reviewBoard reporting and communication

Certificeringen (pré)

CISSPCISMCCISO

Must-haves

12+ years in cybersecurity; minimum 5 years in CISO or equivalent leadership role
Proven track record building and scaling security teams and programmes
Strategic mindset: comfortable setting vision, managing budgets, and advising boards
Experience with critical infrastructure, OT security, or regulated sectors (e.g. transport, energy, utilities)
Strong stakeholder management and executive communication skills
Deep knowledge of relevant compliance frameworks (NIS2, ISO 27001, or sector-specific regs)

Nice-to-haves

Background in incident response or threat management in large organisations
Experience with SIEM, vulnerability management, and GRC platforms
Knowledge of transport sector risks, standards, or regulatory environment
Board-level advisory or C-suite reporting experience

Wat wij bieden

Strategic leadership role with direct board access and budget ownership
Opportunity to shape security culture and governance in a critical infrastructure organisation
Competitive remuneration and executive benefits package
Executive coaching and professional development support
Collaborative environment with cross-functional stakeholders
Personal guidance from a dedicated MVPeople consultant who knows your niche

Het proces

Kennismaking

Telefonisch gesprek met je MVPeople consultant (binnen 24 uur)

Match & Brief

We bespreken de opdracht in detail en bereiden je voor

Klantgesprek

Introductie bij de opdrachtgever

Start

Contractering en onboarding

Details

Type

Consultancy

Locatie

Rotterdam, ZH

Werkmodel

Hybride

Niveau

Management

Sector

transport

Geplaatst

23 maart 2026

Contact

MVPeople Group

jobs@mvpeoplegroup.com

Reageer direct Meer informatie

Vergelijkbare vacatures

GRC & ComplianceConsultancy