Chief Information Security Officer

Als Chief Information Security Officer (CISO) bij NHG ontwikkel en implementeer je de (cyber)securityvisie en het Security Policy House, bewaak je securityarchitectuur en risico's, stuur je DORA in control aan en leid je audits, pentests, incidenten en continuïteit., Role purpose: Lead the organization's information security strategy, governance, and risk management to protect data, systems, and operations while enabling business objectives and regulatory compliance. Core responsibilities - Define and execute the enterprise security roadmap, policies, standards, and security architecture. - Own cybersecurity risk management, including risk assessments, threat modeling, and control effectiveness. - Oversee security operations: monitoring, detection, incident response, forensics, and crisis management. - Lead governance, compliance, and audits (e.g., ISO 27001, SOC 2, NIST, PCI DSS, HIPAA, GDPR as applicable). - Manage identity and access management (IAM), data protection, encryption, and key management practices. - Drive security awareness, training, and secure-by-design practices across engineering and business teams. - Manage third-party/vendor security, due diligence, and supply-chain risk. - Report security posture and KPIs to executive

leadership and the board; advise on investment priorities. Required skills and qualifications - Proven leadership in enterprise cybersecurity programs, including team building and budget ownership. - Expertise in security frameworks, controls, and governance; strong understanding of cloud and network security. - Hands-on knowledge of incident response, vulnerability management, and security tooling (SIEM, EDR, DLP). - Ability to translate techn...