globalen

Information Security and Continuity Officer

Robeco is a mid-sized asset manager with about EUR 190 bln assets under management. Robeco services both retail and professional clients with innovative investment products, -services and -solutions. We have offices in 15 countries worldwide and our head office is located in Rotterdam, The Netherlands.

Continuity & Stability

The Continuity & Stability department (C&S) is responsible for ensuring stability, security, business continuity and reliability of Robeco’ s data processing and IT environment. For this environment, Robeco makes use of different types of outsourcing, including external data centres and several SaaS and PaaS cloud solutions. In the highly regulated financial services industry, expectations of clients, regulators and other stakeholders related to cyber security are increasing. This requires additional attention from C&S to provide assurance about compliance with information security principles, good practices and frameworks.

The Information Security and Continuity Officer is part of the Security Office, which is headed by the manager Security Office. As Information Security and Continuity Officer you are responsible for the execution and maintenance of the Information Security and Business Continuity processes in a outsourced environment. This includes technical, process and organization aspects like the executions of controls and awareness.

Contact

Robeco FIRST
Weena 850
3014 DA Rotterdam
The Netherlands
career@robeco.com

Job responsibilities

As Information Security and Continuity Officer your work includes:

  • Security and continuity risk management and assessments (Like A.I.C. classifications)
  • Setup and execution of security and continuity policies and standards
  • Execution of security reviews including SOx- and ISAE3403 related controls
  • Creation of technical and management reports
  • Security administration and incident handling
  • Vendor Security and Continuity management
  • Security advise and support in projects
  • Pro-active monitoring of threats and trends on security
  • Function as linking pin between several outsources environments (Data center, Workplace, Managed SOC (Security Operations Center).
  • Business Continuity support like update plans, execute exercises and BCM support.
  • Teamwork within the security office and alignment with vendors and organization.
  • Security oversight on IT providers (orchestration)

Requirements

You are a highly motivated professional who is eager to grow, learn, and gain new skills. You are a flexible team player with problem-solving capabilities who is comfortable in working under tight deadlines in an hectic environment. You have a relevant education at Bachelor+ working and thinking level, or comparable, excellent communication skills and a strong personality. The candidate should be able to function autonomically as well as in the team. Experience with operational security and continuity is a must, knowledge of the financial sector and asset management industry is a benefit.

You also have the following skills, knowledge or experience:

  • Information security expertise
  • Five years’ work experience in an information security position
  • Fluent in Dutch and English (both spoken and written)
  • Keeps priorities straight and can make adjustments easily if required
  • Ability to communicate effectively, constructively and professionally
  • Strong analytical skills, pragmatic and quality driven
  • Knowledge of security and IT and information security frameworks and reporting standards, such as ISO27001, NIST Cyber Framework, NIS/ENISA regulations, EBA and ECB/DNB/AFM guidelines, COBIT, ISAE 3402, SOC1, SOC2
  • Technical knowledge about information security measures and cyber threat management
  • Relevant background and certifications: CISSP, CISA, CISM or comparable.

Application process

Please send in your application and motivation quoting job vacancy number 497 to career@robeco.nl. For more information about the position, kindly get in touch with Frank van der Spek, Manager Security Office, e-mail: f.van.der.spek@robeco.nl.

All applications will be treated with the utmost confidentiality. An assessment and integrity test may be used in the selection procedure.