14 juli 2026 Information Information Amstelveen ZZP and / or Contracting

Introduction

  • 36 hours per week
  • Start date: 01 August 2026  
  • End date: 31 July 2027
  • Extension is possible
  • ZZP is allowed
  • Hybrid working
  • Relocation is not possible.

Function

The Risk Officer acts as the primary liaison between Security Monitoring teams, Cyber Defence functions, and Application / Product teams to ensure that security logging requirements are identified, assessed, risk-managed, and successfully onboarded into the organization’s security monitoring platform.

The role is responsible for facilitating the end-to-end process from security log identification, risk / deviation registration, stakeholder engagement, governance oversight, and remediation tracking through to successful onboarding and operational monitoring.

Security Monitoring Governance:
Lead the integration of security logs for Security Operations Center (SOC) monitoring and ensure application teams understand security logging requirements and standards. Embed security monitoring requirements into application lifecycle processes and drive collaboration among Cyber Defence, Security Monitoring, Architects, Product Owners, and Application Teams.

Risk & Deviation Management:
Identify and address gaps in security logging, manage risks, issues, deviations, waivers, and compensating controls. Evaluate business and security impacts of missing monitoring coverage, oversee remediation activities, and support governance forums with detailed reporting on risk status and progress.

Security Log Identification & Onboarding:
Coordinate identification and validation of security events such as authentication, authorization, and audit logs. Facilitate log onboarding into SIEM and monitoring platforms, track progress, resolve blockers, and address technical challenges.

Stakeholder Management:
Serve as the primary liaison between Security Monitoring teams, SOC/Cyber Defence teams, Application Owners, Product Owners, Risk & Control Functions, and Architecture teams to ensure seamless collaboration.

Reporting & Metrics:
Maintain dashboards and metrics on log onboarding progress, monitoring coverage, risks, deviations, and adherence to logging standards. Create management reports to highlight challenges and risk exposure, while supporting audit, regulatory, and control assurance activities.

Requirements

Technical Knowledge:

Security Monitoring and SIEM solutions (e.g., Microsoft Sentinel, Splunk, QRadar).
Security logging standards and frameworks.
Identity and Access Management concepts.
Threat detection and SOC processes.
Risk, Issue, and Control management processes.
Cloud platforms (Azure preferred).

Risk & Governance Knowledge:

IT Risk Management.
Security Risk Assessment.
Issue, Waiver, and Deviation Management.
Regulatory frameworks such as:
– DORA.
– NIST.
– ISO 27001.
– CIS Controls.
  
This role is ideal for someone who can combine security expertise, risk management, and stakeholder engagement, acting as the bridge that ensures security monitoring requirements are translated into operational outcomes across the organization.

Information

Jobs A2Z-CM +31(0)20-3337629

Application

Jobs A2Z-CM +31(0)20-3337629

Your contact

Inlichtingen

Jobs A2Z-CM +31(0)20-3337629

Vacancy number

4232