Skip to content
MVPeople Group Logo
MVPeopleGroup
GRC & Compliance

Information Security Officer (ISO)

DrentheConsultancyHybrideSenioroverige
Reageer directStel een vraag

Over de opdracht

You are responsible for establishing and maintaining the information security program within the organization. This includes developing security policies, managing compliance with ISO 27001 and relevant regulations, and ensuring security controls are embedded across all business functions.

You work closely with business leaders, IT teams, and external stakeholders to identify security risks, prioritize mitigation efforts, and ensure continuity of security practices. Your role bridges governance, risk, and compliance—translating technical security into business outcomes.

Jouw werkzaamheden

  • Develop and maintain information security policies, standards, and procedures aligned with ISO 27001 and organizational objectives
  • Conduct risk assessments and implement security controls to reduce organizational exposure
  • Manage compliance with internal and external security requirements, including audits and certifications
  • Lead security awareness and training initiatives to embed security culture across the business
  • Monitor and report on security metrics, KPIs, and incidents to the board and senior management
  • Collaborate with IT, operations, and business units to integrate security into new projects and systems
  • Establish incident response and business continuity plans, testing and updating them regularly
  • Manage relationships with external parties including auditors, consultants, and regulators

Tech Stack & Tools

Platforms & Tooling

ServiceNow GRCOneTrustArcher

Frameworks & Standaarden

ISO 27001ISO 27002NIST Cybersecurity FrameworkCOBITNIS2DORA

Cloud & Infrastructure

AzureAWS

Methodieken

Risk management (ISO 31000)Business continuity planningIncident managementCompliance auditing

Certificeringen (pré)

CISMCISSPCISAISO 27001 Lead Auditor

Must-haves

  • 7+ years in information security, GRC, or compliance roles
  • Deep knowledge of ISO 27001 and experience implementing security management systems
  • Understanding of risk management, governance, and compliance frameworks
  • Proven ability to communicate security concepts to non-technical stakeholders
  • Experience managing security policies, controls, and compliance reporting
  • Strong project management and stakeholder engagement skills

Nice-to-haves

  • CISM, CISSP, or CISA certification
  • Experience with GRC tools such as ServiceNow or Archer
  • Familiarity with NIS2, DORA, or industry-specific regulations
  • Background in audit or internal controls

Wat wij bieden

  • Strategic role with direct influence on organizational security posture
  • Opportunity to build and lead a security function from the ground up
  • Exposure to board-level discussions and enterprise risk management
  • Professional development in governance and compliance certifications
  • Collaborative environment with cross-functional teams
  • Personal guidance from a dedicated MVPeople consultant who knows your niche

Het proces

1

Kennismaking

Telefonisch gesprek met je MVPeople consultant (binnen 24 uur)

2

Match & Brief

We bespreken de opdracht in detail en bereiden je voor

3

Klantgesprek

Introductie bij de opdrachtgever

4

Start

Contractering en onboarding

Details

Type

Consultancy

Locatie

Drenthe

Werkmodel

Hybride

Niveau

Senior

Sector

overige

Geplaatst

1 juni 2026

Contact

MVPeople Group

jobs@mvpeoplegroup.com
Reageer directMeer informatie

Vergelijkbare vacatures

IAM / IGAConsultancy

Privacy & Permissions Officer

amsterdamHybride
Bekijk vacature
GRC & ComplianceConsultancy

IT Auditor

Apeldoorn, GEHybride
Bekijk vacature
IAM / IGAConsultancy

Teammanager Identity & Access Management (IAM)

AmsterdamHybride
Bekijk vacature
Reageer direct