Skip to content
MVPeople Group Logo
MVPeopleGroup
GRC & Compliance

IT Auditor (Interim, Part-time)

Den HaagConsultancyHybrideSenioroverheid
Reageer directStel een vraag

Over de opdracht

A leading public sector organisation in South Holland needs an experienced IT auditor to strengthen its audit function. You'll own the full audit lifecycle—from planning and execution to stakeholder reporting—covering critical systems like DigiD, Suwinet, and financial IT infrastructure.

This interim role carries real responsibility. You coordinate external and internal audits (ENSIA, year-end controls), oversee audit findings, and advise on emerging legislation (Cybersecurity Act, Data Processing Act). You're the central contact for regulators and internal stakeholders across multiple departments.

Jouw werkzaamheden

  • Coordinate and oversee all audit obligations, including ENSIA and IT-audit for annual accounts
  • Plan, organise and execute internal IT audits on critical controls (DigiD, Suwinet, financial systems)
  • Assess and strengthen existing audit documentation and audit structure
  • Prepare and deliver board-level reporting, regulatory submissions and correspondence to supervisors
  • Manage external audit arrangements—from tendering through delivery and stakeholder alignment
  • Monitor follow-up on audit findings and recommendations from previous audits
  • Advise on new audit requirements under emerging legislation (Data Processing Act, PARTA, Cybersecurity Act)
  • Contribute to integration of ISMS, Privacy Management System and GRC tooling implementation

Tech Stack & Tools

Platforms & Tooling

ENSIA toolingGRC platforms (ServiceNow GRC, Archer, OneTrust—advisory role)

Frameworks & Standaarden

ENSIA (Dutch IT Audit standard)COBIT 2019ISO/IEC 27001NIS2 DirectiveNIST Cybersecurity Framework

Methodieken

IT audit lifecycle managementRisk-based audit planningControl testing and effectiveness assessmentRegulatory compliance mapping

Certificeringen (pré)

CISA (Certified Information Systems Auditor)CISSPCISM

Must-haves

  • 10+ years IT audit or IT risk management experience, preferably in public sector
  • Deep knowledge of Dutch audit frameworks (ENSIA, annual accounts IT audit standards)
  • Proven experience auditing critical systems (identity management, payments, data processing)
  • Strong stakeholder management across technical and executive teams
  • Expert-level Dutch; fluent English for technical documentation

Nice-to-haves

  • Hands-on experience with GRC tooling implementation or advisory
  • Knowledge of DigiD, Suwinet or similar government IT ecosystems
  • Experience with ISMS/PMS design and integration
  • Familiarity with Cybersecurity Act or NIS2 compliance requirements

Wat wij bieden

  • Direct impact on public sector IT governance and security
  • Lead a visible, strategic function—reporting to board and regulators
  • Flexible part-time arrangement (20 hours/week) with extension options
  • Collaborate with CISO, security teams and multiple departments
  • Shape audit modernisation and GRC tool implementation
  • Personal guidance from a dedicated MVPeople consultant who knows your niche

Het proces

1

Kennismaking

Telefonisch gesprek met je MVPeople consultant (binnen 24 uur)

2

Match & Brief

We bespreken de opdracht in detail en bereiden je voor

3

Klantgesprek

Introductie bij de opdrachtgever

4

Start

Contractering en onboarding

Details

Type

Consultancy

Locatie

Den Haag

Werkmodel

Hybride

Niveau

Senior

Sector

overheid

Geplaatst

22 mei 2026

Contact

MVPeople Group

jobs@mvpeoplegroup.com
Reageer directMeer informatie

Vergelijkbare vacatures

IAM / IGAConsultancy

Privacy & Permissions Officer

amsterdamHybride
Bekijk vacature
GRC & ComplianceConsultancy

IT Auditor

Apeldoorn, GEHybride
Bekijk vacature
IAM / IGAConsultancy

Teammanager Identity & Access Management (IAM)

AmsterdamHybride
Bekijk vacature
Reageer direct