Skip to content
MVPeople Group Logo
MVPeopleGroup
GRC & Compliance

Compliance Officer Privacy & Security

Noord HollandConsultancyHybrideMedioroverheid
Reageer directStel een vraag

Over de opdracht

A leading public sector organisation in Amsterdam is strengthening its information security maturity under the BIO (Baseline informatiebeveiliging Overheid). You join the Waste & Resources directorate to implement, monitor, and enforce security and privacy controls across operations handling sensitive waste stream data.

You operate as both coordinator and executor—bridging the gap between policy and practice. Your role ensures the directorate meets ISO 27001/2-based BIO requirements, manages vendor security assessments, and builds a culture of privacy awareness among staff.

You report progress to leadership and collaborate with specialist privacy and security teams across the municipal cluster to drive consistent solutions.

Jouw werkzaamheden

  • Lead BIO improvement plan implementation and report progress to leadership as liaison between operations and security teams
  • Advise the management team on priority security risks and concrete mitigation strategies
  • Conduct privacy awareness training and campaigns to embed security culture across the directorate
  • Monitor and maintain the risk register; track remediation measures executed by line departments
  • Design secure processes with business analysts, embedding security from inception
  • Assess application managers' compliance with BIO controls: logical access, change management, incident response
  • Evaluate and monitor security posture of contracted services; review new vendor security requirements
  • Coordinate with peer compliance officers across municipal directorates for aligned approaches

Tech Stack & Tools

Frameworks & Standaarden

BIO (Baseline informatiebeveiliging Overheid)ISO 27001:2022ISO 27002GDPR/AVG

Methodieken

Risk managementSecurity by designVendor risk assessmentPrivacy impact assessment

Certificeringen (pré)

CISMISO 27001:2022 Lead AuditorCIPP/E

Must-haves

  • Minimum 2 years implementing, maintaining, and monitoring BIO or ISO 27001/2 security controls
  • Minimum 3 years managing privacy and security in IT/ICT projects with vendor oversight
  • Minimum 2 years experience with GDPR/AVG compliance and privacy regulations
  • HBO-level qualification (e.g., cybersecurity or equivalent professional experience)
  • Fluent in Dutch (written and spoken) for stakeholder communication and training delivery

Nice-to-haves

  • Hands-on experience with BIO at a Dutch public sector organisation
  • Track record presenting and training on privacy and security topics
  • CISM, ISO 27001 Lead Auditor, or equivalent certification

Wat wij bieden

  • High-impact role shaping security culture at municipal scale
  • Exposure to data-driven waste management and smart city initiatives
  • Collaboration with specialist privacy and security teams across government
  • Flexible contract (32–36 hours/week) with extension option from June 2026
  • Central Amsterdam location with excellent public transport access
  • Personal guidance from a dedicated MVPeople consultant who knows your niche

Het proces

1

Kennismaking

Telefonisch gesprek met je MVPeople consultant (binnen 24 uur)

2

Match & Brief

We bespreken de opdracht in detail en bereiden je voor

3

Klantgesprek

Introductie bij de opdrachtgever

4

Start

Contractering en onboarding

Details

Type

Consultancy

Locatie

Noord Holland

Werkmodel

Hybride

Niveau

Medior

Sector

overheid

Geplaatst

6 mei 2026

Contact

MVPeople Group

jobs@mvpeoplegroup.com
Reageer directMeer informatie

Vergelijkbare vacatures

IAM / IGAConsultancy

Privacy & Permissions Officer

amsterdamHybride
Bekijk vacature
GRC & ComplianceConsultancy

IT Auditor

Apeldoorn, GEHybride
Bekijk vacature
IAM / IGAConsultancy

Teammanager Identity & Access Management (IAM)

AmsterdamHybride
Bekijk vacature
Reageer direct