Chief Information Security Officer

NVISO is a pure-play European cyber-security consulting firm: our team of security professionals covers areas such as Security Governance, Risk & Compliance, Security Awareness, Cyber Architecture, Penetration Testing, Threat Hunting & Incident Response, Managed Security Services, etc. This fantastic blend of skills enables us to help organizations prevent, detect and respond to complex security challenges.

NVISO has a strong reputation in cyber security: through our active investment in Research & Development and partnerships with top universities we investigate emerging threats and trends, refine techniques and develop innovative products that make NVISO a unique player in the market. Our experts are the largest providers of cyber security SANS trainings, world-wide. We are expanding fast, with clients in 16 countries, and offices in Brussels, Frankfurt, Munich, Vienna, Athens, and more to come...

Our organization is built on values: ‘Pride in What We Do’, ‘Breaking Barriers’, ‘We Care’ and ‘NO BS’. These neatly tie into our mission to be an innovative, trusted and respected security partner for our clients; and to be a great place to work where professionals are given ample opportunity to be creative, to excel individually and as a team, and to grow and develop their talent. We are looking for new colleagues who are as enthusiastic about these values as we are! So come and join us!

We are looking for an experienced Chief Information Security Officer to join our growing organization. In this position, you will be responsible for the planning, organization, and execution of security processes and management systems within the organization. You will be responsible for the maintenance of existing security solutions and the development of new technical solutions, serving as the liaison between business and technical teams at each stage.

As a cyber security services company, we have a strong focus on security, including the security of our own infrastructure and applications. Solid credentials and a genuine interest in information security are therefore essential; affinity with privacy is a welcome plus.

We are therefore looking for an enthusiastic team player who will:

• Have end-2-end responsibility for the delivery of security operations: plan, organize, evaluate and improve (internal) information security services, controls, policies and procedures.
• Define NVISO’s internal security roadmap (ic. proposed improvements to existing solutions; investments to support new or evolving business needs); coordinate the implementation of this roadmap.
• Monitor our security posture; and safeguard a robust internal security hygiene, at all times.
• Assess new business requirements on their security posture, recommend mitigating actions, and support / control their implementation.
• Document and maintain the security processes. Maintain and coordinate the implementation of a security process maturity-improvement action plan.
• Stay abreast of important evolutions in the field of cyber security.
• Ensure that security policies are defined, implemented and controlled.
• Maintain a corpus of evidences and documentation on Security and Privacy in support of client requests (eg. RFPs); respond to security and privacy questionnaires from customers, suppliers, and prospects.
• Contribute to a consistent IT enterprise architecture; review and co-create specific (security) solution architectures (for office and business environments); review and evaluate the fit of emerging technologies.
• Responsible for security audit and certification (eg ISO27k).
• Own our security governance and strategy, through regular consultation with leadership and the organization of steering committees.

• Bachelor’s or Master’s degree in Information Technology of Computer Science;
• 4 to 7 years of proven working experience in Security Operations or Management (ISMS); affinity with Privacy regulatation (GDPR) and privacy management frameworks;
• Good knowledge of IT environments (network; application; cloud and AI services; ...);
• A solid understanding of IT and security control frameworks;
• Good structuring, problem solving and work-organization skills. Ability to identify and solve problems.
• Strong communication and documentation skills; effective liaison between business and IT;
• Team player;
• You thrive in a fast-moving environment; likes to build and drive change; entrepreneurial;
• Can work autonomously and as part of a team; comfortable with deadlines: ensures that projects of varying length are completed on time and meeting high quality standards;
• Excellent English communication skills, both verbal and written;

At NVISO, we care. We are committed to offering you a highly competitive remuneration package including financial and non-financial components:

• Working and learning from the best people in the European cyber security industry. We have multiple SANS Instructors working at NVISO, our staff has presented at popular hacking conferences (BlackHat, BruCON, OWASP, etc) and all of our technical staff can acquire deep technical security certifications (GSE, GXPN, GREM, GCFA, OSCP, etc)
• An entrepreneurial and agile company, where you will be stimulated and supported in driving new initiatives (either through internal innovation or by improving our service offering), without losing sight of having fun!
• Regular team-building and fun events with legendary off-site events once a year. The location of the next team building is one of the most closely guarded secrets at NVISO… We can however disclose that we’ve visited Lisbon, Dubai and Malta over the past few years
• Our commitment to coach and counsel you and help you grow; each employee receives a personal coach within the team, whose role is to ensure your well-being and helps you grow in your career!
• Flexible working hours and home office possibilities
• A Flex Reward Plan
• 32 days of holiday

IF YOU'RE INTERESTED, PLEASE SEND US YOUR APPLICATION!

WE'RE LOOKING FORWARD TO MEETING YOU!