Chief Information Security Officer (CISO)

Max. 5.947 Medior Eemnes Als Chief Information Security Officer (CISO) bij de BEL Combinatie borg je informatiebeveiliging voor drie gemeenten: je brengt risico's in kaart, adviseert bestuur en management, stuurt implementatie van maatregelen, incidentafhandeling, audits/ENSIA en compliance aan. Direct solliciteren Neem contact op, Role purpose: Lead the organization's information security strategy, governance, and risk management to protect systems, data, and business operations while enabling secure growth and compliance., * Define and execute enterprise security strategy, roadmap, and operating model aligned to business goals.

• Own security governance, policies, standards, and metrics; report risk posture to executive leadership and the board.
• Manage cyber risk, threat modeling, and control frameworks; drive continuous improvement of security controls.
• Lead incident response, crisis management, and post-incident remediation; ensure preparedness through testing and exercises.
• Oversee security architecture for cloud, applications, endpoints, networks, and identity; embed security in SDLC/DevSecOps.
• Ensure regulatory compliance and audit readiness (e.g., ISO 27001, SOC 2, NIST, GDPR/CCPA as applicable).
• Direct security operations (SOC), vulnerability management, penetration testing, and third-party/vendor risk management.
• Build and lead high-performing security teams; manage budget, tooling, and security awareness programs.

• Leadership: Executive communication, stakeholder management, and team development.
• Security expertise: Risk management, security architecture, IAM, cloud security, application security, and incident response.
• Governance: Policy development, control frameworks, compliance, and audit management.
• Operational excellence: Metrics/KPIs, program management, vendor management, and business continuity planning.