Skip to content
MVPeople Group Logo
MVPeopleGroup
GRC & Compliance

Senior IT Risk Expert (1st Line)

AmsterdamConsultancyHybrideSeniorbankwezen
Reageer directStel een vraag

Over de opdracht

A leading organisation in Arnhem strengthens its internal control team with an experienced IT Risk Expert on a temporary basis. You identify risks across IT infrastructure, assess control effectiveness, and ensure DORA compliance across critical functions.

Your focus: translate regulatory requirements into actionable risk frameworks, support audit processes, and embed cybersecurity controls into business operations. You work closely with risk management, compliance, and security teams to reduce exposure and maintain audit readiness.

Jouw werkzaamheden

  • Identify and assess IT risks across infrastructure, systems, and processes using structured methodologies
  • Map controls to regulatory requirements (DORA, ISO 27001) and validate their effectiveness
  • Support internal and external audit cycles with evidence, documentation, and remediation tracking
  • Design and maintain risk registers and dashboards for management reporting
  • Recommend control enhancements and prioritise remediation based on risk appetite
  • Collaborate with security, compliance, and business teams on risk mitigation initiatives
  • Monitor emerging threats and regulatory changes affecting the control environment

Tech Stack & Tools

Platforms & Tooling

ServiceNow GRCArcherExcel/Power BI for risk dashboards

Frameworks & Standaarden

DORA (Digital Operational Resilience Act)ISO 27001NIST Cybersecurity FrameworkCOBIT

Methodieken

Risk assessment and quantificationControl design and testingInternal audit supportRegulatory mapping

Certificeringen (pré)

CISACRISCCISSP

Must-haves

  • 5+ years in IT risk, internal controls, or audit roles
  • Strong knowledge of DORA and/or ISO 27001 compliance
  • Experience designing and validating control frameworks
  • Fluent in English; Dutch is a plus
  • Comfortable working with risk management and GRC tools

Nice-to-haves

  • CISA or CRISC certification
  • Experience in financial services or regulated environments
  • Exposure to security incident response and breach investigation

Wat wij bieden

  • Temporary contract with flexibility and clear scope
  • Exposure to DORA and modern compliance frameworks
  • Collaborative team with strong security culture
  • Direct impact on control maturity and audit outcomes
  • Arnhem location with modern facilities
  • Personal guidance from a dedicated MVPeople consultant who knows your niche

Het proces

1

Kennismaking

Telefonisch gesprek met je MVPeople consultant (binnen 24 uur)

2

Match & Brief

We bespreken de opdracht in detail en bereiden je voor

3

Klantgesprek

Introductie bij de opdrachtgever

4

Start

Contractering en onboarding

Details

Type

Consultancy

Locatie

Amsterdam

Werkmodel

Hybride

Niveau

Senior

Sector

bankwezen

Geplaatst

19 maart 2026

Contact

MVPeople Group

jobs@mvpeoplegroup.com
Reageer directMeer informatie

Vergelijkbare vacatures

GRC & ComplianceConsultancy

Projectleider Privacy & Security

Den Haag, ZHHybride
Bekijk vacature
GRC & ComplianceConsultancy

Information Security Officer (Security Office)

Zuid HollandHybride
Bekijk vacature
GRC & ComplianceConsultancy

Adviseur Informatiebeveiliging (IB)

ZH, NLHybride
Bekijk vacature
Reageer direct