Join us in shaping the future of information security by developing and enforcing policies that safeguard the confidentiality, integrity, and availability of IT systems and business information. Be a key player in managing audits and ensuring the highest standards across the organization.

WHAT ARE YOU GOING TO DO

Are you passionate about safeguarding information and ensuring robust security practices across IT systems and processes? As an Information Security Specialist, you’ll play a critical role in protecting our organization’s data, collaborating with stakeholders, and driving compliance with security standards. You’ll contribute to maintaining certifications, managing risks, and fostering a culture of security awareness.

Key Responsibilities

• Collaborate with stakeholders across the business and IT teams to identify, assess, and mitigate security risks.
• Conduct and document information security assessments (BIA) with system and process owners.
• Manage and maintain the Information Security Management System, ensuring compliance with internal and external audit requirements.
• Lead third-party risk assessments and support tender responses with security-related input.
• Promote security awareness by implementing training programs, phishing campaigns, and incident management processes.

Your work environment
This role is based at BAM’s headquarters in the Netherlands. Occasionally, you may be required to travel to other BAM offices, which could involve overnight stays. Advance notice will always be provided for such travel. BAM embraces flexible working and offers a hybrid working model, allowing you to work both from home and the office, ensuring a balance that suits your lifestyle.

This role requires a strong background in information security and risk management, with technical expertise, industry certifications, and excellent interpersonal skills to collaborate effectively with stakeholders and drive security initiatives.

• Relevant industry certifications (e.g., CISSP, CISM, Comptia Security) and ISO27001 implementation experience.
• Practical knowledge of third-party risk management and data protection legislation.
• Proficiency in producing dashboards and reports using tools like Power BI.
• Strong analytical, problem-solving, and organizational skills.
• A professional, team-oriented attitude with excellent communication abilities