Skip to content
MVPeople Group Logo
MVPeopleGroup
GRC & Compliance

Information Security Officer

Zuid HollandConsultancyHybrideSenioroverige
Reageer directStel een vraag

Over de opdracht

You oversee the organisation's information security program across people, process, and technology. You develop security policies, manage risk assessments, and ensure compliance with regulatory requirements like ISO 27001 and industry-specific standards.

You bridge business needs with security controls. You advise leadership on cyber risks, manage incident response planning, and drive security awareness across teams. You evaluate third-party vendors and manage security budgets effectively.

Jouw werkzaamheden

  • Design and maintain security policies, standards, and procedures aligned with ISO 27001 and regulatory frameworks
  • Conduct risk assessments and vulnerability evaluations across IT infrastructure and business processes
  • Manage compliance monitoring and audit preparation for internal and external audits
  • Coordinate incident response planning and lead post-incident reviews
  • Evaluate and manage relationships with security vendors and service providers
  • Report security metrics and risk status to board and executive leadership quarterly
  • Drive security awareness and training programs across the organisation
  • Develop and monitor KPIs for security controls effectiveness

Tech Stack & Tools

Platforms & Tooling

ServiceNow GRCArcherSplunk or similar SIEMvulnerability scanning toolsidentity management systems

Frameworks & Standaarden

ISO 27001ISO 27002NIST Cybersecurity FrameworkCOBIT 2019NIS2 Directiveindustry-specific regulations

Cloud & Infrastructure

AWS or Azure security configurationscloud compliance tools

Methodieken

Risk assessment and risk managementthreat modelingsecurity control frameworksincident response planning

Certificeringen (pré)

CISM (Certified Information Security Manager)CISSP (Certified Information Systems Security Professional)CISA (Certified Information Systems Auditor)CRISC (Certified in Risk and Information Systems Control)

Must-haves

  • 8+ years in information security, compliance, or risk management roles
  • Proven experience implementing ISO 27001 or equivalent security frameworks
  • Strong knowledge of compliance requirements and audit processes
  • Experience managing security budgets and vendor relationships
  • Excellent communication skills for board-level reporting

Nice-to-haves

  • Background in GRC tooling such as ServiceNow or Archer
  • Experience with incident response planning and tabletop exercises
  • Knowledge of cloud security compliance and multi-cloud environments
  • Familiarity with NIST, COBIT, or other security maturity models

Wat wij bieden

  • Lead security strategy with direct board influence
  • Competitive salary and comprehensive benefits package
  • Professional development budget for certifications and training
  • Collaborative team environment with modern security tools
  • Personal guidance from a dedicated MVPeople consultant who knows your niche

Het proces

1

Kennismaking

Telefonisch gesprek met je MVPeople consultant (binnen 24 uur)

2

Match & Brief

We bespreken de opdracht in detail en bereiden je voor

3

Klantgesprek

Introductie bij de opdrachtgever

4

Start

Contractering en onboarding

Details

Type

Consultancy

Locatie

Zuid Holland

Werkmodel

Hybride

Niveau

Senior

Sector

overige

Geplaatst

11 mei 2026

Contact

MVPeople Group

jobs@mvpeoplegroup.com
Reageer directMeer informatie

Vergelijkbare vacatures

IAM / IGAConsultancy

Privacy & Permissions Officer

amsterdamHybride
Bekijk vacature
GRC & ComplianceConsultancy

IT Auditor

Apeldoorn, GEHybride
Bekijk vacature
IAM / IGAConsultancy

Teammanager Identity & Access Management (IAM)

AmsterdamHybride
Bekijk vacature
Reageer direct