Information Security Officer

Information is of great value to the NPO in tailoring content for our audience and our audience itself

protect. That is why we protect information related to broadcasters' content online

platforms, personal and business data by any means necessary. This allows us to

continue to ensure their availability, integrity, and confidentiality. And thus keep the public safe and well

continue to achieve.

The NPO’s entire operations depend on reliable information processing. Information and

Communication technology is therefore indispensable. However, in the world around us, threats and

risks are increasing, and attacks on our IT systems are becoming increasingly sophisticated. Ultimately, this could lead to a

have a negative impact on public value, the NPO’s reputation, and the continuity of our

distribution of broadcasters' content and related services.

Protecting our information from threats is not the responsibility of a small group

Whether you're an NPO professional or an IT specialist: every management team, department, and employee has a role to play in this

take responsibility and be highly self-reliant. The Privacy and Security Department makes it

to enable the NPO organization and its staff to make our vision a reality.

What you will be doing

As an Information Security Officer (ISO), you will implement our information security strategy, which involves

takes into account organizational needs, the threat landscape, and current trends. Your main focus is

on the one hand, overall management as a manager of the implementation of the roadmap that has already been established to

to take NPO's information security to the next level, while also taking a hands-on and proactive approach

implementing the parts of the roadmap that fall within your area of expertise. You will also help NPO further in the

awareness that everyone in the organization is responsible for information and for ensuring that it is handled correctly

information security awareness. You have a long-term vision in this area and know how to translate it into

concrete actions.

As an ISO, you are familiar with the current state of affairs in the field of information security and establish guidelines to ensure

You will ensure that the appropriate actions are taken and build support to achieve information security objectives. You maintain an overview of the information security strategy, assess its implementation, and conduct risk analyses. In consultation with the IT Security Officer, you report to the board of directors on progress, risks, security incidents, and areas for improvement. You are adept at navigating the tension between intentions and day-to-day reality. You also possess excellent technical and practical knowledge to translate the information security strategy into policy, assess its implementation, and make recommendations as needed. You therefore have sufficient technical and practical knowledge to ensure that the information security strategy does not remain merely on paper.

You regularly consult with various internal stakeholders on the best approach and develop practical rules and procedures that are well-suited to NPO. You spend much of your time helping employees and teams translate our policies into practical applications in their daily work.

As an ISO, you are part of the crisis management team. In high-pressure situations, you remain calm and do what needs to be done. You also maintain contact with external partners and collaborative bodies in the field of information security. Finally, you keep the ISMS up to date.

As an ISO, you will work closely with members of the privacy and security team—particularly the IT Security Officer—and coordinate frequently with representatives from across the organization. You will operate at both the strategic and tactical levels and report to both the board of directors and the Chief Financial Officer.

Your main responsibilities are

• Leading the internal information security program;
• developing, maintaining, and implementing the information security policy framework;
• translate technical requirements into policy and practice, and vice versa;
• developing and maintaining information security procedures;
• oversee the implementation of plans related to policy, management, and monitoring. This involves the planning and coordination of information security plans and projects;
• assisting departments and specialists in implementing policy;
• raising internal awareness through creative communication, internal training programs, etc.;
• oversee audit and testing policies;
• providing management and reporting information to the board of directors and the executive team.

You'll recognize yourself in this

• You have a high level of work and thinking skills;
• Your resume must demonstrate at least five years of work experience in a management and/or program management role in the field of information security, as well as knowledge of and experience with risk analysis and ISO 27001/27002;
• You have completed relevant training courses and/or obtained certifications in the field of information security (e.g., CISSP/CISM).

As an ISO, you have a solid understanding of and stay abreast of organizational, social, political, technological, and media developments, and you know how to effectively apply this knowledge in your work. Your interpersonal skills, advisory skills, organizational sensitivity, integrity, and persuasiveness are well-developed. You are an expert in your field and can clearly articulate your message to both internal and external stakeholders. You are well-informed about trends, developments, and opportunities in ICT(operating systems, networks, standards, development and management methods).

Terms of Employment

• At NPO, we have a 36-hour workweek with flexible working hours;
• You will receive a fixed year-end bonus equal to 6% of your annual salary;
• You will receive 200 vacation hours;
• We have an NPO Academy to help you further your professional development.

The ISO position is a full-time role (36 hours per week). You will start with a one-year contract, and the salary rangesfrom €4,740.23 to €7,685.20 gross per month based on a 36-hour workweek. We determine the salary based oneducation, experience, and equal pay for all genders.

Interested?

If you’d like to learn more about the ISO position, please call Joost Negenman, Privacy Officer and Acting ISO, at 06 1028 16 22. You can also call or text our recruiter, Jolanda Janssen, at 06 23 63 71 31.If youhave noquestions and are interested, please send your resume and cover letter (attn: Joost Negenman).

When will you receive a response?

You can apply until Sunday, June 4, 2023.

June 5, 2023: Job Application Feedback

June 7, 2023: First job interviews (afternoon)

June 8, 2023: Feedback on job interviews

June 14, 2023: Second job interviews (morning)

June 15, 2023: Feedback on job interviews

June 22, 2023: Selection Assessment

June 26, 2023: final decision

June 27, 2023: Offer of employment terms (by phone and email)

Open to everyone

The NPO has a public mission: to serve the interests of every individual and society as a whole. In doing so, we are guided by the needs of our audience, with all their backgrounds and perspectives.We want this to be reflected in our organization’s workforce. We believe in aninclusive organization that harnesses the power of diversity to achieve even better results. Becauseit is precisely because we are different from one another that we can arrive at new insights and better solutions. Andthat is exactly what we at NPO are looking for. We are curious to learn who you are and what qualities andexperience you bring to the table. Our job openings are therefore open to everyone.