Technical Information Security Officer

NN Group IT / Enterprise Engineering Technology is looking for an Information Security Officer who is able to take a proactive role in the management of information security risks. The ideal candidate has a strong foundation in IT security and compliance practices, is well versed in relevant industry standards, and actively contributes to the adoption, improvement, and effective implementation of security processes and controls. You take ownership, work independently where needed, and collaborate closely with stakeholders to embed security into daily operations.

You are committed to staying current with emerging security trends, threats, and regulatory developments, and you are able to identify opportunities for new initiatives that further enhance the organization’s security maturity and resilience.

What you are going to do

Within our organization, all business units are responsible for safeguarding the security of the IT environment. A key challenge for the BSO team is to review, validate, and ensure the correct implementation of technical security measures, while actively supporting DevOps teams in achieving this.

The BSO team plays a critical role in balancing residual risks against required security controls, enabling product owners and their teams to make well-informed, risk-based decisions. Continuous improvement of IT security processes and procedures through standardization and automation is essential for increasing quality, reducing manual effort, and enhancing consistency across the organization.

As a member of the BSO Team, your role is to review and support the implementation of security standards and guidelines, ensuring a structured, consistent, and well-aligned approach to IT security and compliance.

• Review technical designs and security measures (e.g., IAM, firewalls, according to NN security standards) for the technical environment, including network, infrastructure (both cloud and on-premise datacenters), SaaS, and external connections
• Work with a team of information security officers on a wide variety of security and compliance tasks, such as periodic control tracking, deep-dive product reviews, threat modelling, vulnerability assessments, and supply chain security
• Work in close cooperation with the DevOps infrastructure teams to proactively identify risks and support teams in implementing the appropriate security measures
• Support security and compliance projects and initiatives such as automation of security compliancy and simplification of IAM

Who you are

• You are proactive and result-driven and ensure you meet agreements made
• You are concise and have an eye for detail, while keeping the overall picture and goal in mind
• You have a clear communication style and know how to align with and report to higher management and stakeholders. You know how to maneuver in political environments
• You have hands-on experience with security and risk processes and procedures, so that you understand what impact changes to these processes and procedures can have on the organization
• You are strong on content, but understand organizational challenges and are able to move security forward in a professional, pragmatic, and cooperative way of working
• You preferably have experience with modern engineering tools and infrastructure solutions, with a strong focus on automation

Who you will work with

The BSO EET team has been repositioned within Group IT. You will be joining a team and working with enthusiastic colleagues with diverse backgrounds, ages, and skills, with intensive daily interaction, cooperation, and support on difficult topics. The team is focused on keeping the environment secure and safe, with continuous learning through coaching on the job, training, and education, while also enjoying working together.