Public transport payments in the Netherlands are undergoing a major transformation and our client is at the forefront of developing and managing cutting-edge systems that will enable travellers to check in and out using their mobile phones, bank cards, and credit cards across all public transport networks nationwide.
We equip stations with the latest gates, poles, and card readers while processing billions of transactions using EMV technology. This innovation is already live with several transport operators and will expand rapidly across the Netherlands this year.
Are you ready to play a key role in security and compliance for this revolutionary system? If so, this is your chance!
What you’ll do:
Conduct risk assessments and define additional security measures
Evaluate security measures and compliance effectiveness
Handle security incidents and escalations
Develop and maintain business continuity and disaster recovery plans
Manage cryptographic security keys and HSM procedures
Oversee CA systems and related security architectures
Maintain compliance frameworks (ISAE 3402, PCI-DSS, ISO 27001)
Support internal and external audits
Address privacy-related questions and implement necessary security measures
Coordinate multi-party meetings with subcontractors and clients
Initiate and manage penetration tests (PEN testing)
5+ years of experience in risk assessment, information security, and compliance
Familiarity with risk assessment frameworks and compliance standards
Certifications in security risk management (CRISC, CISSP, CISA, CISM)
Understanding of cryptography and privacy regulations
Strong project management and communication skills
Proactive mindset and analytical problem-solving abilities
Experience in diverse work cultures and fluent English communication
You must already be living in The Netherlands and within a commutable distance to Utrecht. Relocation is not supported.
English (UK) 
Nederlands