An individual contributor role assigned to support a Business Information Security Officer (BISO) who is assigned to one or more Business Units (BU). The role is an embedded Security, Safety, & Fraud (SS&F) analyst responsible for supporting the BISO in driving the SS&F strategy within each BU; partnering with SS&F to support delivery of products/tools/services that are fit for purpose. Within the BU, the BSA works primarily with the Tech and Product teams with the aim to improve the security, safety, and fraud risk posture of the BU. The role supports BU’s adoption of the SS&F capabilities and standards and the continuous improvement of the latter based on BU feedback and requirements. By identifying BU gaps and risks related to SS&F, the BSA supports the BISO in enabling the business to achieve their goals while addressing their most relevant risks.
Role Description:
Key Job Responsibilities and Duties:
Responsible for:
Assessing, identifying, reporting, and monitoring the SS&F risks within the BU by supporting the BISO in periodic and relevant insights to BU leadership that drive risk based decisions and prioritization of actions
Champions and promotes SS&F awareness in the BU
Support in building productive relationships with business stakeholders
Representing the BISO at meetings and act on behalf of as requested
Consulted for:
Support the BISO in delivering operational and tactical security improvements in line with the overarching security strategy while supporting the Business Information Security Officer (BISO)
Understanding and keeping up to date with BU specific SS&F related security regulations
BU and SS&F collaboration support
Feedback and BU requirements towards the SS&F capabilities and services for continuous improvement
Support and analysis of SS&F risk acceptances
Support and analysis of SS&F risk remediation and mitigation activities
Support and analysis during SS&F incidents management
Experience & Skills:
3 to 5 years of experience in one or more of Cyber Security, Safety, and Fraud topics
Understanding of technology processes and practices (e.g., change management, Secure Software Development Lifecycle, Identity and Access Management, IR, Incident Management, Data Governance)
Experience in IT Risk Management
Excellent English communication skills
Experience in stakeholder management and ability to effectively engage and influence individual technical staff
Creative problem-solver able to communicate concepts to a limited audience and create clarity
Additional cybersecurity qualifications such as CISM, CISSP, CISA, CRISC, AIGP, or similar are an advantage
Organized, with attention to detail and execution skills
Experience in the analysis and assessment of security programs
Good understanding of security best practices and standards such as NIST Cybersecurity Framework, ISO27001, and PCI DSS
Experience participating in security, safety, and fraud incident response activities
Other personal characteristics:
Open minded, respectful, high emotional intelligence, and collaborative work style
Comfortable with ambiguity, creating clarity
Achieving data driven, collaborative solutions
Good communication, consulting, and influencing skills
Integrity and independent thinking
Thrives in fast-paced, demanding environments
Learning demeanor, transparent behaviour
Good problem solver able to roll up sleeves to get things done
Committed to building a diverse, inclusive work environment
Good time management and organizational skills to manage multiple tasks and changing priorities
Education:
Bachelor’s degree in computer science or related field or equivalent experience
Benefits & Perks: Global Impact, Personal Relevance:
Possibility to live and work in Amsterdam, named as the best city in the World for living a happy and healthy life
International and diverse company culture;
Possibility to innovate through multiple company programs (e.g. Hackathon, twice a year)
Opportunity to work in an Agile, startup-like development environment
Excellent support for personal development through online platforms
Mentorship programs to accelerate skills growth
Contribute to the company tech transformational journey toward a more modern tech stack
Inclusive leadership, valuing the opinion of everyone independently of their career level
Great compensation package
Multiple perks that will make your life easier (e.g. discounts to local shops, discounted gym membership, etc.)
Pre-Employment Screening
If your application is successful, your personal data may be used for a pre-employment screening check by a third party as permitted by applicable law. Depending on the vacancy and applicable law, a pre-employment screening may include employment history, education and other information (such as media information) that may be necessary for determining your qualifications and suitability for the position.
