Business Information Security Officer (Cybersecurity)

TL;DR

Business Information Security Officer (Cybersecurity): Managing IT risk and security compliance for Tech NL IT domains with an accent on regulatory alignment and risk mitigation. Focus on developing security policies, overseeing control standards, and advising leadership on risk exposure.

Location: Hybrid (Amsterdam - Haarlerbergpark)

Company

hirify.global is a global financial services organization providing banking and insurance solutions to individuals and businesses.

What you will do

• Act as the primary IT risk and security representative for Tech NL IT domains.
• Develop and oversee the implementation of IT risk policies, control standards, and procedures.
• Establish and maintain a structured IT risk management program to reduce and mitigate cyber risks.
• Advise Tech NL IT leadership on risk exposure, compliance (DORA, EBA), and mitigation strategies.
• Support the drafting of risk acceptances and lead the remediation of security incidents and vulnerabilities.
• Monitor and report on Key Risk Indicators (KRIs) and Key Performance Indicators (KPIs).

Requirements

• University or Master's degree in Computer Science or a comparable field.
• 7+ years of experience in cyber risk management, preferably within a CISO department or 2LoD.
• Solid understanding of regulations such as DORA and EBA.
• Expertise in Vulnerability Management, Network Security, IAM, and IT Resilience.
• Strong English proficiency (spoken and written) is required.
• Proven stakeholder management skills and ability to influence senior leadership.

Nice to have

• Professional certifications such as CISSP, CISM, CRISC, or CISA.
• Dutch language skills.

Culture & Benefits

• Hybrid working model for better work-life balance.
• Competitive compensation including a 13th-month salary and 8% holiday payment.
• Pension scheme and 25-28 vacation days based on contract.
• Informal working environment with a strong focus on personal growth and continuous learning.