Information Technology Security Manager

You will...

• Contribute to the success of security initiatives across the company, providing thought leadership and driving control adoption
• Provide leadership regarding security architecture and the implementation of infrastructure to support the modernization of systems
• Drive maturity of controls and associated procedures, aligning with industry standard frameworks and best practices
• Lead small team of security engineers, providing oversight of day to day activities, escalations, etc.
• Establish and maintain cloud architecture, tools, and processes for migrating legacy applications to modern architectures including the use of containers
• Determine security requirements by evaluating business strategies and requirements
• Participate as a GIS Security expert in architecture reviews and other meetings
• Participate as a GIS Security expert in service requirement workshops, design and maintenance meetings.
• Research information security standards
• Interpret and analyze corporate security standards and baselines
• Developing architecture patterns, standards and reference architectures for technology platforms by ensuring security policies and standards are correctly aligned, adhered with and have clear tracking.
• Conduct system security and vulnerability analyses and risk assessments
• Plan security systems by evaluating security technologies, develop requirements, while adhering to industry standards
• Assist with PoCs and provide architecture oversite for Security
• Ensure architecture patterns, enterprise standards and broader governance frameworks are adhered to

Ideally you have...

• Security certifications such as CISSP, ISO, QSA, CRISC, CISM are a plus.
• Demonstrated experience in security engineering, security operations, risk & compliance and/or other security fields.
• 5+ years of information security management or security leadership.
• Experience with shared services model, vendor, and managed security services.
• Knowledge and understanding of data privacy regulations, such as GDPR, CCPA, HIPAA etc.
• Experience with management, enterprise-wide transition and/or transformation programs.
• Experience with security governance and IT general control frameworks such as ISO2700x, HiTrust, Cobit, ITIL, NIST CSF, NIST 800-53, PCI-DSS etc.
• A good comprehension of both the Dutch and English language, and the ability to communicate with diverse audiences, orally and in writing, in an easily understood, authoritative, and actionable manner.
• Strong influencing skills and the ability to champion security and educate staff on the latest security risk, software protection, assurance methods and technologies.
• Strong work ethics.

Darwin Recruitment is acting as an Employment Business in relation to this vacancy.