Information Security Officer - Vendor Management - Amsterdam

The importance of information security has grown tremendously in the last years. That is why we are constantly looking for even smarter ways to make digital banking as secure as possible. A big responsibility, because there is a lot at stake. Do you want to play a role in guaranteeing the security of customer data in our complex banking environment?With your knowledge and experience, you can help improve the overall security posture of ABN AMRO by identifying relevant information security risks and by advising on ways to mitigate them. What do you see when you envision the next step? Work on achieving your goals and develop yourself professionally and personally. Tell us your story. We want to hear it!

As an account manager you will be responsible to manage, monitor and report on the performance and the status of security controls around services delivered by our strategic partners both on tactical and operational levels.Key Responsibilities:

• Govern and manage IT vendor relationships in terms of performance vis-à-vis security aspects underlying contractual obligations;
• Assess service level reports against the contracted KPI’s/SLA’s/OLA’s. Ensure service level reports are analysed by relevant service takers and jointly discuss those with the third party provider;
• Ensure continuous improvements are achieved both in the quality of reporting and service provided by the third party;
• Manage the IT security related part of a contract with the third party provider. Work together with 2nd line functions such as legal, compliance, procurement etc. and other internal parties on contractual changes;
• Execute Vendor Security Risk Assessments and perform follow up actions. Focus on the risks that matter, translate them into the business context and help your stakeholders to address them;
• As an expert you stay well informed on the latest developments in the field of technology, information risk and threats and that you actively share this knowledge with your colleagues;
• Stay up-to-date with emerging cybersecurity trends and help determine if/when to integrate them into the assessment program;
• Help solving security-related questions, take initiative and escalate in time if needed;
• Signal improvements related to the way of working inside the team and contribute to improving the maturity and coverage of our service offering;
• Identification of process optimization opportunities, including technology and work flow enhancement.

You will be part of the Vendor Security Services team within the Corporate Information Security Office (CISO) of ABN AMRO in Amsterdam. Within the team we work together closely and have a lot of opportunities to develop. ABN AMRO is transitioning to an agile way of working where speed, productivity, agility and innovative power come first. For you, as an information security expert, this means an interactive and inspiring way of working together across the team and with different departments of the bank.

Required skills:

• HBO or WO/University diploma or a recognized degree in related fields;
• At least 3-7 years of relevant experience in the area of information security;
• You are knowledgeable on areas such as security processes, technology architectures, cryptography, network security, application security and vulnerability management;
• You have knowledge of and experience in managing multi-vendor environment on tactical and operational levels, in particular service providers;
• Experience in a complex environment (internal and external stakeholders, different time zones, different cultures);
• Strong ability to translate technical risks into business risks and vice versa;
• Experience communicating to senior management;
• Fluent (verbal and in writing) in English;
• You are pragmatic, analytical and possesses good verbal, written communication and social skills;
• You are energetic and like to work in an agile environment;
• You take ownership of your own and team’s delivery and have a proactive attitude.

Nice-to-have skills:

• Fluency (verbal and in writing) in Dutch;
• Experience in executing information security risk assessments;
• You possess a number of relevant certifications like CISSP, CISA, CISM, CCSP, etc.;
• You like to train and coach your junior colleagues and share your knowledge.

We offer a challenging job and you are directly responsible for your own successes. We will stimulate every opportunity to work on personal development to keep on top of your expertise. At ABN AMRO, we use our knowledge, expertise and network to help our clients within and outside the Netherlands achieve their goals based on informed decisions. Our clients’ interests always come first. We want clients to understand our products, and we sometimes say ‘no’ if a product involves a risk that is too high for the client. Putting clients’ interests first also means communicating in plain language and crafting smart solutions that genuinely make a difference. That is our goal.