Security & Continuity Officer*

Department

The Digital Policy, Control & Resilience (DPC&R) department operates within the COO domain, which encompasses both Operations and Technology departments. DPC&R is tasked with managing security oversight and operations, business continuity management, security monitoring and testing, identity and access management, cybersecurity and analytics, as well as policy making. The department includes various roles such as information security officers, policy and control officers, and cybersecurity analysts. The head of the department serves as Robeco’s Chief Information Security Officer (CISO).

Position & Requirements

Position & Requirements

We are looking for an experienced Identity & Access Management (IAM) Specialist who will take ownership of Robeco’s IAM landscape and bring it to the next level. You will be responsible for managing account permissions and access controls across all IT systems and business applications, ensuring secure, compliant, and efficient access for users and services.

You will work closely with IT delivery teams, business stakeholders, and security experts to support the integration of applications into the IAM platform, automate identity lifecycle processes, and enhance the overall user experience.

Key Responsibilities

• Manage and optimize the account lifecycle process.
• Ensure compliance with Robeco’s Information Security Policy and industry best practices.
• Execution of activities related to Logical Access Management controls.
• Enhance authentication and authorization processes.
• Support login and access-related queries.
• Collaborate with technical specialists on IAM solutions.
• Contribute to cloud adoption and DevSecOps integration from an IAM perspective.

Requirements

• 5–10 years of experience in Identity & Access Management.
• In-depth knowledge of IAM platforms and solutions such as Sailpoint, Microsoft AD and Entra-ID, CyberArk.
• Experience with hybrid IT environments and outsourced services.
• Experience with automation of Identity and Access Management processes.

• Understanding of regulatory frameworks (e.g., DORA, ISAE, SOx).

• Relevant certifications (e.g., CISSP, CISM) are a plus.
• Proficiency in both Dutch and English (written and spoken).
• Availability of at least 4 days per week (32 hours), of which 60% from our Rotterdam office.

Competences

• Strong analytical and problem-solving skills.
• Structured and organized approach.
• Proactive and innovative mindset.
• Ability to educate and create awareness across the organization.
• Strong communication and reporting skills.
• Organizational sensitivity and a collaborative attitude.
• Excellent communication, stakeholder management, and project coordination skills.

All applications will be treated with the utmost confidentiality. An assessment and integrity test may be used in the selection procedure.

Robeco Recruiting Team