Skip to main content
NEUN
Back to Careers

Finst

Information Security Officer

NEW
AmsterdamFull-timeGlobal
šŸ“Š MidšŸ  Hybrid
ActivePosted within the last 30 days

Job Description

[AI-summarized by JobStash]

You will take ownership of the second-line information security, IT risk and compliance function. You will build, run and improve the ISMS, drive compliance with DORA, GDPR and other regulations, review first-line IT controls, support audits, perform vendor due diligence, and follow up on incidents and remediation plans.

Requirements

  • ā—3ā€“5 years of experience in information security, IT risk or compliance
  • ā—Solid knowledge of DORA, GDPR and general information security principles
  • ā—Hands-on experience with setting up or managing an ISMS (ISO 27001)
  • ā—Technical background or experience with cloud infrastructure, CI/CD, SDLC, IAM or microservices
  • ā—Strong understanding of risk management frameworks, controls and compliance processes
  • ā—Relevant certification is a plus (e.g., ISO 27001 LA/LI, CISA, CISSP)
  • ā—Experience coordinating audits and managing compliance documentation
  • ā—Excellent communication skills and a proactive independent approach

Responsibilities

  • ā—Own and operate the second-line information security risk and compliance program
  • ā—Lead the setup and operation of the ISMS aligned with ISO 27001
  • ā—Drive compliance efforts with DORA, GDPR, AI Act and other relevant regulations
  • ā—Review and challenge first-line teams on IT security practices, policies and controls
  • ā—Define and maintain the IT risk management framework using best practices (e.g., ISO 27005, NIST)
  • ā—Maintain IT compliance documentation, policies and processes
  • ā—Schedule, manage and support internal and external audits
  • ā—Review new tools and vendors and assist in software approval and due diligence
  • ā—Track incidents, non-conformities and risks and follow up with remediation plans
  • ā—Act as an internal advisor on security and compliance best practices

Benefits & Perks

  • ā—Bonus scheme
  • ā—Shares incentive plan
  • ā—25 paid holidays per year
  • ā—Equipment provided (MacBook, Windows, standing desks)
  • ā—Flexible working hours
  • ā—Possible partial remote work
  • ā—Monthly team drinks
  • ā—Yearly company off-sites

Tech Stack

CDNISTDORArisk managementISMSISO 27001IAMCIcompliance documentationISO 27005
Expired
Search