Are you a critical Information Security professional with a specific interest in the protection of personal data? And do you want to work for a successful international retailer? Action is currently looking for an Information Security and Privacy Officer, so join our team!
As an Information Security and Privacy Officer you will be part of the Risk Assurance team reporting directly to the Manager Information Security & Privacy. As part of the Risk Assurance team you work in close cooperation with team members in other areas of expertise, such as Enterprise Risk Management, Fraud Management, Compliance and Internal Audit. Furthermore you will work in close cooperation with other business departments both at Group Head Office and in the countries.
Security- and privacy risk assessments
Coordinate and support in the execution of Privacy Impact Assessments (PIA’s)
Coordinate and support in the execution security risk assessment
Assess and advise on the implementation of security- and privacy requirement in projects (security- and privacy by design)
Support in the assessment of GDPR compliance of data processing activities
Standards & procedures
Support the Manager Information Security and Privacy in developing, reviewing and updating information security and privacy standards
Draft and implement information security and privacy controls for existing business processes and new initiatives
Support in handling data subject requests
Assess and investigate (possible) security- and data breaches
Handle questions/complaints about the use and/or processing of (personal) data
Direct the design, preparation and delivery of information security and privacy risk and control (awareness) trainings
Create a network of privacy champions within the organisation to assist with identification and management of information security and privacy risks
Build and maintain relationships with Risk Assurance key stakeholders, both at Group Head Office and in the countries
Ensure proper communication between all relevant stakeholders and share best practices to avoid “re-inventing the wheel”
Support the Manager Information Security and Privacy in preparation of senior management (Executive Board and Directors) reporting on information security and privacy performance
Who are you?
Relevant Master’s degree (WO Level) in information security, audit or IT, (about to be) qualified as RE or CISA
Background in privacy is a pré
Approximately 3-4 year experience in the domain of information security management
Solid understanding of relevant laws, regulations and standards related to information security and privacy (amongst which ISO27001/2 and the GDPR)
Strong project and stakeholder management skills
Experience in the retail sector preferred
Fluent in English (speaking and writing), fluency in French and German preferred
Analytical mind-set and ability to relate strategic company objectives to own activities
Hands on mentality and able to work efficiently and effectively, also under time pressure
Excellent communication skills, including good presentation and report writing skills
Acts with integrity and constructive critical mind-set
Is very organised, can structure activities and projects, sticks to agreements within deadlines and according to guidelines
What we offer you
We open stores internationally on a weekly basis. The rapid growth makes Action a successful organization and requires the organization to continuously adapt. In addition, the expansion of Action brings challenges in the design of our processes the protection of our business critical information. With an enterprising and proactive attitude, you can contribute to the further professionalization of our Risk Assurance department and further develop yourself as a content specialist. Besides that we offer:
Competitive salary based on a 38-hour working week
A bonus based on personal and company goals
Company laptop and an mobile phone
15% employee discount for purchases at Action
For more details about this position or about the application process, you can contact our Recruiter Nelleke Moormann via WhatsApp at 06-22348377. You can only apply via the online application form.
While we appreciate the offer of assistance, unfortunately Action does not accept unsolicited resumes from search firms. All resumes submitted by search firms to any employee at Action via-email, the Internet or directly without a valid written search agreement will be deemed the sole property of Action, and no fee will be paid in the event the candidate is hired by Action.