Security Auditor

For our client in Utrecht we are looking for a Security Auditor. You will focus on improving the level of IT Compliancy and Tech Risk management for Tech. Focus on NIS2, GDPR and DORA. You will work in the first line.

Your tasks will be:

• performing analysis of legislations, directives and standards in relation to Tech and propose controls to mature the way of working regarding compliancy;
• defining gaps based on findings/ analysis, discuss with management, but also engineering management and report on progress;
• constantly evaluating the Tech Control framework and propose improvements;
• helping Tech community improving level of "in control" of Tech processes (explaining control testing, defining and reviewing gaps) ;
• preparing reports/analyses for (senior) management and GRC board on the performance related to level of compliancy, risk reduction and issue solving;
• helping the team to grow in Tech risk management and Tech compliancy;
• Add knowledge to the team regarding relevant Tech legislation, directives, standards, etc.

Requirements:

• Register Auditor and/or CISA;
• NIS2, GDPR and DORA
• Experience with Governance, Risk and Compliance;
• Cyber Security;
• Audit Security;
• Compliance Auditing;
• Audit.

Extra information:

• Payroll contract;
• Full time;
• Work 2 days a week on location.