Information Security Officer

Company Description

Vattenfall is a European energy company with approximately 21 000 employees. For more than 100 years we have electrified industries, supplied energy to people’s homes and modernized our way of living through innovation and cooperation. We now want to enable the fossil freedom that drives society forward. To be able to reach this ambitious goal we are looking for talented individuals who, in addition to their passion for their own role, also have strong team spirit and want to contribute to supporting a meaningful corporate mission. 

Job Description

Are you passionate about information security and eager to make a real impact on our journey towards fossil free living? As an Information Security Officer at Vattenfall  you will play a crucial role in safeguarding the digital infrastructure of our customer facing IT landscape, enabling us to provide sustainable energy solutions to our customers. Your expertise will be vital in protecting our information, building customer trust and supporting our mission to create a climate smarter living for all.  

What will you do? 

As our Information Security Officer, you will play a crucial role in ensuring our customer facing IT systems are secure and compliant with industry standards. Your main responsibility will be to maintain and further develop our information security, in close cooperation with our business system owners, system managers, the agile teams and our colleagues in the Vattenfall IT business unit. With your knowledge of security controls, you will support in implementing robust security measures and your hands-on support will be vital in achieving and maintaining ISO 27001 and other security certifications. Your success in this role will be measured by your ability to maintain and improve our security posture, ensuring compliance and mitigating risks effectively. Through your efforts, you will contribute to our goal of providing secure and reliable energy solutions, while fostering a culture of security awareness and continuous improvement. 

Some of the activities in an average week: 

• You plan a meeting with one of the system owners and advise proactively on information security topics, thus creating more awareness and understanding. When required you provide support in necessary actions and decisions, for example when preparing a contract with a new supplier for one of our digital channels or in case of findings from a pentest conducted.  
• Based on a risk assessment you conducted, you prepare a decision paper for risk acceptance. 
• You ensure the implementation of information security controls and monitor on their effectiveness. 
• In the event of an information security incident, you coordinate and align with the responsible business and system owner(s) to take the required actions. 
• You support the BISO Customers NL in the yearly ISO 27001 internal and external audit. 
• In the bi-monthly meeting with Vattenfall IT you discuss the performance of the contracts in Customers NL in terms of application life cycle management and service level agreements. You will be also connecting with Vattenfall IT for managing IT security risks in the Customers NL organization.  
• You organize and lead training sessions with system owners to prepare their regular progress meeting with the supplier, in which topics like the data processing agreement (DPA) will be discussed. 

Qualifications

You are an experienced professional with a proven track record in the field of Information Security. You have a Bachelor or University degree and at least three years of hands-on experience with information security, including ISO-27001 training. Your deep understanding of security controls allows you to effectively support and advise Business System Owners and System Managers. You are fluent in Dutch, which is essential for seamless communication within our team. 

Your hard skills include: 

• Comprehensive knowledge of ISO 27001 standards and security certifications 
• Proficiency in conducting Information Security risk assessments and implementing necessary controls 
• Hands-on experience with security incident coordination and risk management 
• Basic knowledge of Privacy / GDPR 

In addition to your technical expertise, you are highly communicative and excel in change and project management. You enjoy taking a proactive approach, always looking for ways to improve processes and enhance security measures. Your ability to develop clear decision material and support business actions is crucial for this role. 

You thrive in an environment where you can apply your knowledge and skills to ensure the efficiency of Information Security controls. Your meticulous attention to detail and commitment to excellence make you an invaluable asset to our team. If you are passionate about Information Security and ready to take on new challenges, we want to hear from you! 

Additional Information

Our offer 

Join us in Amsterdam and collaborate with a dynamic team to create innovative energy solutions. Drive projects that contribute to a sustainable future, engage with stakeholders to ensure seamless project execution, and analyze data to optimize performance and efficiency. We champion continuous improvement and innovation in all tasks. For more information, please contact us directly. 

Besides being a challenging and inspiring place to work, we value a great work atmosphere! We offer lots of opportunities for personal and professional growth. 

The basics: 

• 42 Holidays per year 
• Excellent work-life balance / hybrid working 
• A base salary up to 6700,- euro gross per month 
• A great office space 
• Many extra benefits on top! 

  
More Information 
Apply directly or reach out for more information when needed  to Folmer Koper, Recruiter via folmer1.koper@vattenfall.com.

At Vattenfall we are convinced that diversity contributes to build a more profitable and attractive company and we strive to be good role model regarding diversity. Vattenfall works actively for all employees to have the same opportunities and rights regardless of gender, ethnicity, age, transgender identity or expression, religion or other belief, disability or sexual orientation. 

The security of Vattenfall and its employees is essential. For that reason, a pre-employment screening will be part of your recruitment process. The screening is based on the role you will fulfill within Vattenfall. The screening will be performed by a third party, Validata.
 
We look forward to receiving your application!