As the Business Security Officer (BSO) for Group IT / Enterprise Engineering Technology, you make sure that the digital products are secure and compliant. You have a thorough understanding of application services (Including managed services and SaaS) and IT infrastructure on an enterprise level, as well as modern information security practices. Together with a team of security officers, you support the EET product teams (product managers, product owners and DevOps teams). You make sure security is embedded in the daily practice of the teams, and make sure security topics get the right priority together with the MT members of EET. Next to this you keep track of progress on important security initiatives and IT controls, in order to monitor and steer on this.
What you are going to do
Your contribution, consists of deep technical knowledge and experience with Appllication services and IT Infrastructure (preferably within the financial sector), but also developments around applying security within the application and infrastructure domain. You possess the competencies to make security an integral part of the mindset and way of working of both DevOps teams and the management team.
As the maturity per team will vary, you have to be able to change your approach per team. NN puts a lot of emphasis on the automation of security compliancy and IT controls. You will play an important contribution to this effort, by enabling the automation and promoting the implementation. With your expertise you will increase the security mindset and maturity of our department.
You understand that you have to keep up with all developments in the market. We provide you with many opportunities to enhance your knowledge and develop yourself professionally.
Key activities and requirements:
Expanding your (proven) security knowledge and experience, including a vision how security can be most effectively applied to the application services and infrastructure products
Experience with IT Control Tracking, frameworks and risk assessments, including automation of these processes
Making sure the EET DevOps teams, can take their responsibilities with regards to Security and compliancy. As the BSO you have to take the lead, and at the same time realise that the execution and responsibility of security lies with the DevOps teams
Lead the automation of IT Control Tracking in EET and represent EET in Group IT for this
Coaching and steering a team of 7 security officers
What we offer you
NN invests in an inclusive, inspiring work environment and in skills and competences for the future. We match this with employee benefits that are in line with what is needed today and in the future. This way, we offer our employees the opportunity to get the best out of themselves. We offer you:
Salary between €7,635 and €10,907 depending on your knowledge and experience
13th month and holiday allowance are paid with your monthly salary
27 vacation days for a 5-day working week and one Diversity Day
A modern pension administered by BeFrank
Plenty of training and learning opportunities
NS Business Card 2nd class, which gives you unlimited travel, also privately. Do you prefer to travel with your own transport? Then you can declare the kilometers travelled
Allowances for setting up your home office and for internet use
Who you are
In depth knowledge of IT Infrastructure in an enterprise environment (preferably in the Financial Sector)
Focus and ambition to make security part of our way of working, and ensuring a high level of security and operational resiliency
Taking ownership in the end-to-end security responsibilities
One or more certifications such as CISSP, CISM, CRISC
Cooperation with the other BSOs with NN Group, to jointly improve security within NN
Who you will work with
As a Business Security Officer, you will closely with all the MT-members of Enterprise Engineering Technology.
Via standardized digital platforms EET enables digital frictionless journeys for our internal and external customers. We focus on employee and customer experience and supply them with frictionless journeys, excellent products, standard applications and business technology. EET consists of Product Domains and every domain is different, in terms of maturity and structure.
The security officers of your team, are operationally involved and provide support and consultancy. As the BSO you make sure nothing get’s missed and keep the oversight. You make sure that the goals align with your team, and the MT of EET. Next to this you are the contact person for Operational Risk Management (ORM) and Corporate Audit Services (CAS).
Any questions?
If you have any questions about the job, you can reach out via email to Jarmo Fernhout Principal Talent Acquisition Specialist via, jarmo.fernhout@nn-group.com
This is a permanent position. A candidate receives a contract from NN and we are not open to interim/freelance assignments and/or candidates or acquisitions by agencies. Thank you in advance for your understanding.