Junior/Medior Information Security Officer, The Hague

What you are going to do The NN Customer&Digital Security team is looking for a junior/medior information security officer who can take a proactive role in managing information security risks in collaboration with the C&D DevOps teams and product owners to help us stay in control.

As a junior/medior Information Security Officer, you will advise and support teams in conducting risk assessments, help teams mitigate risks, and enhance their security knowledge and posture. You will review and verify whether technical measures are implemented correctly and support the DevOps teams in that regard.

Your role as a team member of the C&D Security team is to define, review, and support the implementation of standards and guidelines for a structured and well‑aligned way of working on information security and compliance.

In this role, you will work with the second line, internal auditing, and various C&D (DevOps) teams on a wide range of information security and compliance tasks, such as conducting security reviews, threat modelling, providing information security advice, interpreting vulnerabilities, and assisting in resolving audit findings.

Assess, review, and report on the implementation of security controls based on our IT control framework (ITCF)

Assist in the process of conducting information risk assessments and create control statements

Verify whether control measures are properly established, formulate recommendations for improvement, and serve as the point of contact during audits

Perform risk assessments on third‑party suppliers to ensure they meet our security requirements and regulatory obligations

Conduct threat modelling, walk through vulnerabilities with teams, and provide advice on solutions

What we offer you

Salary between€4.324 and €5.765 based on a 40 hour workweek, depending on your knowledge and experience

13th month and holiday allowance are paid with your monthly salary

27 vacation days for a 5‑day working week and three Diversity Days

A modern pension administered by BeFrank

Plenty of training and learning opportunities

NS Business Card 2nd class, which gives you unlimited travel, also privately. Do you prefer to travel with your own transport? Then you can declare the kilometres travelled

Allowances for setting up your home office and for internet use

Who you are We are looking for a candidate with 3‑5 years of working experience as a security officer, preferably within the financial sector. A relevant Bachelor’s or Master’s degree, such as computer science or a related field, preferably with additional certifications like CISSP or CRISC. A person who understands information security control tracking, has experience with closing IT security audit findings, can perform security reviews and can consult DevOps teams in the implementation of security measures, preferably in cloud environments.

Proactive, result‑driven and able to set priorities and plan ahead

Able to enter into a discussion with product owners regarding the design choices and integrity of the applications, identify risks, and give advice on appropriate solutions and measures

Able to propagate and defend the agreed internal guidelines in the field of information security risk management

Listen to the concerns and needs of the DevOps teams and guide them in achieving security goals

A team player: you are supportive and flexible in picking up tasks when priorities change

#J-18808-Ljbffr