Zum Inhalt springen

Consulting CISO

Hybrid
  • Utrecht, Utrecht, Netherlands
Security & Privacy Office

Job description

Northwave's vision is to make quality security accessible to everyone. We believe in an integrated approach where teams from various security niches collaborate. Think of Security Management, Blue Team, Red Team, Forensics, Human Risk Management, and Cyber Resilience.

The current status quo is that many companies have multiple suppliers for specific parts of their security organization that hardly communicate or collaborate. The result is a bottleneck that leads to inefficiency, high costs, and security risks.

We offer a different model, breaking down silos and providing a complete package. For our clients, this results in excellent security without the need to build large internal teams, with all the associated cost savings.


In this role, you will be responsible for the security strategy of multiple clients. You will be part of client teams that deliver one or more managed services to our clients and within these client teams, you are the strategic expert. At the client, you are a partner to the management team and the board. Together with your client team, you work to improve the client's security.

What you will do

As a Consulting CISO, you look beyond individual security services, focusing on the security organization as a whole.You feel responsible for the security and quality of Northwave services at the client. You enjoy helping, coaching, and managing the security experts in our client teams.


As a Consulting CISO, you look at the client context and their specific challenges. Topics you like to address include establishing security governance, improving risk management processes and risk management culture, and managing change in this area. You are the expert with knowledge of security laws and regulations. You are comfortable having conversations about security budgets or the efficiency and effectiveness of the security operation. You are able to discuss topics at a management level when cyber-safe behavior or the level of cyber resilience in an organization is lacking.

The team

You don't work alone, but together with a strong interdisciplinary security team. For a specific client, your team consists of you as strategic lead, a tactical security officer for the ISMS, an operational security officer for reporting and planning,and a technical security operations manager responsible for delivering the Managed Detection & Response (MDR) service from the BlueTeam (SOC). You are supported by the experts from our CERT, ethical hackers from the RedTeam,and cyber resilience specialists for good incident response and crisis management training.

Together with this team, you keep client organizations safe and always have the right subject matter expertise. You are fed with industry and client-specific threat information from the Cyber Threat Intelligence team, so you can keep the client informed of relevant developments. Instead of short-term consulting assignments, you build a long-term strategic partnership. You play a crucial role in this.

You enjoy

  • Positioning yourself at a strategic level and making an impact on multiple organizations. You lead other team members as a virtual client team lead.
  • Contributing to the further development of our vision and services.
  • Making information security fun and accessible for management and operations.
  • Working from abstract to concrete solutions.
  • Initiating a structural change at the client.
  • Keeping your security knowledge up to date.

What you can expect

Northwave is one of the few self-funded security companies in the Netherlands. This means we have the freedom to set our own course. As a result, we've cultivated a fantastic company culture with low turnover.

We focus on long-term organic growth, free from short-term pressures and investor demands. Our clients appreciate this continuity, and it's a benefit for you too. You'll get to meet new people and work with a stable team of passionate experts.

Additionally, we offer:

  • Salary based on experience
  • MacBook & iPhone
  • Company car
  • 25 vacation days
  • Excellent pension scheme
  • Company-wide courses and individual development opportunities
  • Over 250 passionate colleagues to work with and learn from
  • Fun Northwave events and parties. Check out our careers page for an overview.

Job requirements

We are looking for someone who wants to make an impact and wants to use all their expertise. Experience in a similar position and affinity with our integrated approach is an advantage. You are able to operate at both a strategic and tactical level and delegate operational work to other team members.

  • Several years (3+) active as a Security Officer or CISO, or a comparable professional role
  • Knowledge of management systems, such as ISO27001
  • Knowledge of business processes
  • An independent and well-structured way of working
  • Networking skills
  • Proficiency in Dutch and English
  • CISM/CISSP/CISA/CIPM or related certifications are a plus, but not necessary

Interested? 

What is important to you in your next step? We would love to hear from you and would be happy to talk. For more information, apply directly or contact Bastiaan. bastiaan.rolloos@northwave-cybersecurity.com +31 6 45 880 490

Hybrid
  • Utrecht, Utrecht, Netherlands
Security & Privacy Office

or

Hybrid
  • Utrecht, Utrecht, Netherlands
Security & Privacy Office