Our client is one of the major banks in the Netherlands with a global footprint, and we are looking for an IT Security&GRC specialist to join our team and make us more compliant to regulations like DORA, NIS2, GDPR, ISO and more.

The ideal candidate will have a strong background in Operational Resilience, Incident Recovery, Cloud Recovery, Data Privacy, IT Security, Risk Management, and Project Management.

• Cyber Resilience Program Development: Lead the design and execution of cybersecurity initiatives aligned with business continuity, incident management, and resilience objectives.
• Cloud Recovery & Data Protection: Implement cloud risk assessments and disaster recovery solutions for hybrid cloud environments using AWS, Azure, and other platforms.
• IT Governance & Risk Management: Manage IT Security implementations, audits, and risk assessments across multiple industries. Ensure regulatory compliance with DORA, NIS2, ISO, GDPR, PCI-DSS and more
• Operational Resilience: Develop and test comprehensive disaster recovery and business continuity plans. Collaborate with internal and external stakeholders for risk mitigation and system recovery.
• Vendor Management: Oversee security and risk management frameworks with third-party vendors to ensure compliance and safeguard business continuity.
• Team Leadership: Manage small technical teams, guiding them through security implementations, audits, and continuous improvement processes.
• Stakeholder Engagement: Communicate effectively with business leaders, technical teams, and external auditors to ensure all requirements and solutions align with business goals.

• Education:Bachelor's Degree in a related field (eg, Information Technology, Business Continuity, Cybersecurity).

• Technical Expertise:

  • Strong experience with cloud platforms Azure/AWS and tools to manage data/incident recovery
  • Hands-on knowledge of Cybersecurity frameworks (NIS2, NIST, ISO 27001, GDPR).
  • Expertise in backup and recovery (Symantec, Azure Site Recovery, AWS Endure).

• Skills:

  • Information Security Management System (ISMS)
  • Crisis and Incident Management
  • Vendor and Stakeholder Management
  • Cloud Security and Recovery
  • Data Privacy (GDPR, CCPA)
  • Cyber Resilience and Business Continuity
  • AI Ethics and Governance

• Led cybersecurity risk assessments and recovery strategies
• Successfully reduced cybersecurity incidents
• Developed and implemented comprehensive disaster recovery plans and cloud security strategies
• Managed IT Business Continuity program together with the team