Information Security Officer (ISO) Netherlands

The team, position & mission:

We enable everyone in Orange Business Digital Services Europe (DSE) to perform according to relevant security and privacy standards and regulations, as well as business requirements, and thereby contribute to the company reaching business goals. Our security and privacy strategy is aligned with the business strategy to ensure we use security and privacy not just as a compliance measure but also to drive innovation and business both internally and for our customers. We firmly believe that good governance, security and privacy will be achieved through an aware and competent workforce, using well-defined processes and frameworks, and tools that support our security policies and privacy framework. That is why we see security and privacy as interdependent on each other, not as silos, and why we have one common department that works with both areas in an aligned manner supporting each other and the business.

As the Information Security Officer for Netherlands, you will report to the Group CISO in the Group Security and Privacy department and work closely with both the department and the local team to manage and further develop our Information Security Management System (ISMS) and implement our Security and Privacy Strategy. This is to ensure all tasks in the yearly schedule of group activities are carried out locally in the Workspace entities of Digital Services.

Additionally, you will work as a liaison for one or more customers, bridging the gap between the customer, the customer team in Digital Services, and other delivery units. This role is typically provided to customers with high security awareness, specific requirements and that must ensure compliance with different information security standards or frameworks. Your job will be to remain up to date on customer needs and ensure that Digital Services continues to design and operate our services, accordingly, including alignment with the security and privacy requirements.

Key areas of responsibilities:

• As a part of the Security and Privacy team in Digital Services, assist in the continual improvement work, security strategy, risk management, privacy and security awareness efforts in the company.
• Internal control activities to ensure that agreed Security, Privacy & Compliance requirements are met.
• Be an advisor, internally and externally, to ensure we design, build and run services that fulfill these requirements.
• Keep yourself up to date with relevant laws, regulations, standards or frameworks, including ISO27001, PCI-DSS, CIS Controls and GDPR, including relevant national/local laws and regulations.
• Maintain a plan for recurring security related activities, and ensure they are executed.
• Support Group CISO in security and privacy strategy implementation, reporting and execution of the activities within the yearly wheel.
• Support Group CISO in internal and external meetings related to security and privacy management, security and privacy forums, risk management, compliance and reporting.
• Work closely with our Security Operation function on threat intelligence, security service operation, vulnerability management and incident response.
• Work closely with customer teams, to ensure that day-to-day operations comply with requirements.
• Perform reporting/advisory for Security & Compliance to your customer(s).
• Manage, or participate in, recurring Security Forum meetings with your customer(s).
• Act as a liaison between Digital Services and customer, to ensure customer specific security and compliance requirements are met.
• Act as a liaison between Group CISO and the local organization to ensure security, privacy and compliance requirements are implemented, managed, controlled and audited.
• Support Group CISO to maintain up-to-date ISMS and reporting processes from the local organization.

Requirements

This position is based in The Netherlands, Amsterdam and requires regular traveling, both domestic and international

• At least 3 years’ experience of working in a customer service environment.
• At least 1 years’ experience from roles with security and/or compliance responsibilities.
• Solid Security / Cyber Security knowledge and skills.
• Solid understanding of security and privacy enabling business.

Critical competencies for success

• Very good written and spoken communication skills in English and Dutch
• An ability to balance security requirements with business needs.
• Take initiative as well as be willing to follow the lead.
• Good oral and written presentation skills.
• Internal control and reporting.
• Thrives working in a team.

Other personal characteristics

• Take initiative as well as be willing to follow the lead.
• Good oral and written presentation skills.
• Internal control and reporting.
• Thrives working in a team.
• Comfortable working in a fast-paced environment

What we offer you

• Hybrid ways of working with access to our modern & collaborative office in Amsterdam.
• Salary range between 60.000 and 90.000 EUR per year.
• Good and flexible mobility package
• We may work with tomorrow’s technology, but at our core we are a people-oriented organization, and we are proud to have our Great Place to Work certification.
• An open and inclusive culture, that enables us to reach our full potential.
• A community of experts - as Digital Natives, we put innovation at the heart of our expertise.

About Orange Business:

Orange Business is a leading network and digital integrator company with offices in 65 countries worldwide, and part of the Orange Group.

Digital Services, a business line of Orange Business is a newly created division within Orange Business. In Europe the business line consists of approximately 1500 people distributed across 9 countries. We are digital natives, with innovation at the core of our business, which makes us a reliable partner close to our customers. Our joint mission is to help innovate, drive and lead them in their digital transformation challenges and business strategies in key digital domains, including Cloud, Customer Experience, Digital Workspace and Data & AI. As an agile and fast-moving digital business partner, the business line offers trusted end-to-end solutions and products that help businesses in a wide range of industries in the private and public sector transform their operations, enhance customer experience, and drive growth.

With our digital expertise, we are a strategic partner of Orange Business objectives to be a leading network and digital integrator with our team as a key growth engine.

The process

We screen applications on an ongoing basis, with the aim of conducting conversations and interviews as we receive them.

Interested but feel that you don´t match the criteria 100%? We encourage you to apply anyway! Your perfect match might be the next job we are announcing, so why not have a head start and apply now!

Are you interested to read more about Orange Business? Visit our website or follow our LinkedIn account.

If you have any questions, please reach out to ; g.vandenberg@login-orange.com  Geraldine van den Berg, People & Culture Director