Plus
Включить Plus
Назад
Company hidden
7 дней назад

Information Security Officer

6 500 - 8 500
Формат работы
hybrid
Тип работы
fulltime
Грейд
senior
Английский
c1
Страна
Netherlands
Вакансия из списка Hirify.GlobalВакансия из Hirify Global, списка международных tech-компаний
Для мэтча и отклика нужен Plus

Мэтч & Сопровод

Для мэтча с этой вакансией нужен Plus

Описание вакансии

Текст:
/

TL;DR

Information Security Officer (Cybersecurity): Own the ISMS, drive ISO 27001 certification and DORA compliance, and serve as the independent challenge function for ICT risks with an accent on policy enforcement, vulnerability management, and third-party risk oversight. Focus on implementing operational controls, leading incident response, and reporting technical risks to the Board and regulators.

Location: Rotterdam HQ, opportunities for hybrid work though in-person collaboration is highly valued.

Salary: €6,500 - 8,500 per month

Company

Bitcoin and digital asset business operating from Rotterdam.

What you will do

  • Own and develop the ISMS, keeping it current as the business scales.
  • Drive ISO 27001 certification, manage compliance, audits, and auditor relationships.
  • Implement DORA requirements into operational controls, incident reporting, and third-party risk management.
  • Define and enforce security policies across the organization.
  • Oversee vulnerability management, penetration testing, and security incident response.
  • Manage third-party and cloud (GCP) security risks; act as second-line challenge for ICT controls.
  • Report risks to the Board and regulators in business language; maintain tooling stack.

Requirements

  • 5+ years in information security, 2+ years ISMS ownership.
  • Hands-on ISO 27001 implementation/maintenance experience.
  • Solid DORA knowledge (Articles 5-15, 23-25, 28-30) with regulatory-to-controls translation.
  • Experience in vulnerability management, pen testing oversight, incident response.
  • Track record defining/enforcing policies; cloud security (GCP preferred).
  • Three lines of defence model understanding; communicate risks to Board/regulators.
  • Strong written/spoken English; CISSP/CISM/ISO 27001 Lead preferred.

Nice to have

  • Financial services or Bitcoin/digital assets experience.
  • MiCAR knowledge; DNB/AFM regulatory audits.
  • Third-party risk in cloud/outsourced environments.

Culture & Benefits

  • Competitive salary based on experience.
  • €300 for workflow tools; monthly €50 Bitcoin pension.
  • 25 vacation days; share certificate program option.
  • Travel/NS Business Card reimbursement.
  • Paid training; stocked office pantry; Urban Sports Club/LeaseBike discounts.

Будьте осторожны: если работодатель просит войти в их систему, используя iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →