Information Security Officer (ISO 27001)

TL;DR

Information Security Officer (ISO 27001): Managing and scaling the information security program and ISO 27001 ISMS for a shipping automation platform with an accent on pragmatic governance, risk management, and audit readiness. Focus on driving cross-functional security remediations, establishing AI safety guardrails, and integrating security into architecture decisions.

Location: Hybrid (3 days/week onsite in Eindhoven, Netherlands)

Company

Europe’s leading shipping automation platform helping over 25,000 e-commerce businesses grow.

What you will do

• Own the ISO 27001 ISMS, managing internal audits, evidence collection, and external audit readiness.
• Run security risk management by maintaining the risk register and driving mitigations with owners.
• Develop practical security policies and standards for access, data handling, and incident response.
• Lead security incident governance, including classification, escalation, and post-incident learning loops.
• Manage third-party and vendor security risk through risk tiering and due diligence.
• Establish guardrails for safe AI adoption and act as a security reviewer for critical architecture decisions.

Requirements

• 3-5+ years of relevant experience with proven ownership of an ISMS/audit cycle (ISO 27001).
• Ability to influence and drive follow-through across Engineering, Product, and senior leadership.
• Pragmatic, risk-based mindset used to balance security with speed and customer impact.
• Strong written and verbal communication skills in English.
• Experience in SaaS or fast-paced scale-up environments.
• Must be based in or able to work hybrid in Eindhoven.

Nice to have

• Experience preparing for SOC 2 readiness or similar assurance frameworks.
• Familiarity with AI governance and modern GenAI risk management.
• Certifications such as CISSP, CISM, CISA, Security+, or ISO 27001 Lead Implementer/Auditor.
• Experience with vendor security reviews and enterprise customer trust requirements.

Culture & Benefits

• Flexible hybrid work model with a €500 home office budget.
• 28 holidays per year plus a free day off for your birthday.
• 4-week paid sabbatical after 3 years of service.
• €2,000 annual study budget and support for professional certifications.
• Pension scheme and health insurance discount.
• Access to company gym and weekly Bootcamp and Boxing sessions.