Deze vacature is vervuld!

ITNL-Permanent - IT Security Manager Business Support

  • FunctieIT Security Manager Business Support
    LocatieRegio Amsterdam
    Periode6 maanden
  • Voor onze eindklant zijn wij op zoek naar een:

    IT Security Manager Business Support


    Start : asap, in overleg
    Inzet : 40 uur per week
    Locatie : Regio Amsterdam

    Note : Klant beraad zich momenteel nog of inzet op basis van W&S of in eerste instantie deta-vast zal zijn

    IT Security Manager Business Support (BSSM)
    Business Support units HR, Finance and Facilities are responsible for implementing IT/information security policies in their services, in their products and in their internal processes.
    In order to achieve this the BSSM role co-operates with (service) managers, specialists and projects in the business support teams.

    Furthermore BSSM co-operates with 2nd Line-of-Defense (LoD) functions like NITSO, DPO and CS, and with other 1st LoD units outside BS, including Business units. For all BS related matters BSSM is  the primary contact for IT/information security and privacy aspects.

    BSSM coordinates the implementation of security measures needed to implement security policies within BS.

    BSSM implements controls and reviews processes that guarantee proper implementation of policies and adequate functioning of security controls.

    BSSM reports to its line and Development Manager within BS. On security matters BSSM reports and advices to Business Support Management and CIO. Globally defined NITSO tasks and responsibilities related to Business Support products and services are delegated to BSSM. On these matters BSSM directly reports to the NITSO.

    BSSM provides requested and unsolicited advice and reports.

    Main sources for implementing security measures are :
    - Dutch (and Euopean) law and regulations
    - The organisation’s Policy Framework :
                      . International policies and standards
                      . Policies and procedures
                      . Business Support and ITS policies and procedures

    Based on risk analyses, assessments and audits security measures and (monitoring) controls are defined to implement the policy. Following the security management cycle (Plan-Do-Check-Act) security measures and controls will be checked and improved where necessary on a continuous basis in line with the organisations Security Control Framework.

    Main goal of the BSSM role is to take care that IT/information systems are used and/or provided by Business Support compliant to organisation requirements.


    The Business Support function performing the BSSM is fully dedicated to security and as such the function cannot be combined with functional responsibilities for Business Support products or services.

    In executing this role activities performed will include:

    -   Setup BS’s yearly information security plan.
    -   Maintain the Business Support’s security control framework.
    -   Raise awareness and coordinate awareness training
    -   Supervise, coordinate and review realization of organisation information security policy.
    -   Develop and implement information security plans.
    -   Monitor, assess and report on operational changes.
    -   Coordinate investigation and report on information security incidents
    -   Perform risk analyses on Business Support services, products and processes.
    -   Participate in projects that involve IT/information security risks.
    -   Facilitate definition and realization of improvement plans and mitigating actions.
    -   Facilitate coordination and evaluation of security measures.
    -   (Periodically) assess and report on services/applications.
    -   Evaluate Business Support unit and process reports.
    -   Monitor and report on security improvement plans, projects and mitigation plans.
    -   Prepare internal investigations and audits.
    -    Evaluate internal and external control and audit reports.

    Bent u geinteresseerd en op korte termijn beschikbaar en wilt u meer informatie over deze functie neemt u dan snel contact op met ITNL. Bij interesse zien wij graag een CV in Word format voorzien van een gerichte motivatie tegemoet met daarnaast vermelding van all-in uuratief of bruto maandsalaris.