Mid-Level Cyber Security & Risk Officer

Department Information

The Digital & Information Division

The Department of Technology (D&IT) is dedicated to digital and information technology

to be successfully utilized by the Port of Rotterdam Authority (HbR) and the port and

to thereby strengthen HbR’s mission and business strategy and put them into practice

to bring.

The D&IT SOCS Department (Service Management, Operations & Cyber Security)

is ultimately responsible for customer satisfaction and the continuity of the

IT products and services for the HbR. The department is also responsible for

the controlled rollout of new products and services. In addition,

the department responsible for the active management of IT risks for the HbR, the port

and its partners through cybersecurity and risk management. The Port Authority is seeking a mid-level Cyber Security & Risk Officer with a

a strong personality who helps shape the operational positioning of

further integrate cybersecurity and risk management into the Port Authority’s processes

improve.

What will you be doing?

Mid-level Cyber Security & Risk Officer

(CSRO) works in an organization classified as Vital B. In this context,

robustness and security are of vital importance. The IT infrastructure and

Key applications are managed by DevOps teams with end-to-end responsibility

maintained and updated. In this environment, you will work with various DevOps teams

assist with conducting a risk assessment and help with

implementing control measures based on the existing

Information Security Policy. In addition to supporting our mission-critical environment

There are also teams that develop and maintain commercial digital products

as well as teams in which suppliers maintain the (public) websites.

As part of your duties, you will work with the security team to develop new guidelines

shape. As a team, you will report to the CISO and CIO. In summary, this is

What we expect from you:

• You are the primary point of contact for all security-related tasks

  for the teams under your supervision, with regard to

  information security and business continuity;

• You translate policies into security requirements for suppliers

  and developers / operational teams;

• You are up to date on current trends and developments

  in the field of cybersecurity, analyzes its impact, and provides

  unsolicited advice to relevant stakeholders;

• You work with teams to determine which risks are acceptable and

  what mitigating measures are necessary;

• You monitor compliance with security requirements by

  suppliers, administrators, and developers, and report on this;

• You will evaluate changes to the security level based on their substance

  (designs);

• You will conduct cybersecurity and IT risk analyses, including

  These include cloud risk analyses, scenario analyses, and business impact analyses;

• You will monitor security incidents and participate in

  on-call duty.

What we ask of

you?

Our Ideal Mid-Level Cyber Security & Risk Specialist

Officer has a technical background in IT, with experience in

is an asset in the nautical sector. In addition, you are a team player and demonstrate this

as well. You enjoy diving deep into resolving incidents and complex

challenges. In addition, you challenge yourself to discover new things and

make it your own; develop yourself! In an ever-changing environment

you stay calm and know how to create structure. You describe yourself as

is decisive and takes the initiative; in addition, the ability to prioritize is essential

while you're working. You're a team player, which means you're good at

builds relationships within the security team and across the organization.

In addition, you should ideally have:

• A completed associate's or bachelor's degree, preferably in the field of

  in Information Security or Business Informatics;

• 3 years of verifiable work experience in a similar

  position, preferably supplemented by certifications such as CISSP, CISM, or CISA;

• Naturally, you look at the infrastructure and security,

  security applications or technical and/or functional designs;

• Knowledge of network and cloud security concepts

  and network protocols.

• Strong analytical skills, a desire to learn, and a big-picture perspective;
• You are steadfast, analytical, and solution-oriented, and you

  have a naturally positive and critical attitude;

• You take the initiative and know how to motivate others to

  take the necessary steps.

What do we offer?

What you can expect from us:

• A

  an attractive, independent role within a dynamic team where you can

  where initiative is encouraged and where your impact is immediately noticeable

  is;

• A

  a fun, dynamic, and ambitious team;

• A

  a workplace with (in our opinion, of course) the best view in Rotterdam;

• We

  Building the world's smartest port with modern IT solutions

• The

  The starting salary depends on education and experience and is capped at

  €5,346 gross per month (with the possibility of a raise through the annual review)

  (increasing to the maximum amount of €6,682).

• 36-hour

  workweek

• A

  one-year contract with the possibility of a permanent position

• Good

  pension plan with the ABP (average-earnings scheme, under which approximately 70% of the

  (the premium will be reimbursed by us)

• Travel Expense Reimbursement

  by car or public transportation

• Thirteenth

  monthly and vacation pay, accrued through a personal flexible budget of

  19.6%. There are several ways to use this budget, with a wide range of options

  training and development opportunities, so you can continue to grow. You

  Smart, but we're smarter.

Contact Information

If you meet the job requirements and are up for this challenging

If you are interested in this position, please apply before the deadline via the

application button on our website. Because we place great importance on compliance

In accordance with privacy laws, we only accept job applications through this website

treatment.

We want to increase diversity in our company and therefore invite

specifically women, people from different cultural backgrounds, and people with

a disability that prevents them from applying for a job. In the event of equal qualifications,

Candidates from these target groups are preferred.