IT Security Advisor

As an IT Security Advisor, you’ll play an important role in safeguarding the organization’s information assets and supporting compliance with internal policies and industry standards.

Your challenges

• Advise on the implementation of security controls for applications and infrastructure
• Perform and support information security risk assessments, including third-party (security & data privacy) evaluations
• Review the design and effectiveness of technical and organizational security measures
• Identify security gaps, communicate risks, and support remediation efforts
• Support and advise teams on secure design choices and application integrity
• Assist with internal and external information security audits and follow-up actions

This is what you bring

• A minimum of 1 year of relevant experience in IT GRC, audit, controls, or third-party assessments
• Bachelor’s degree in a relevant field is required; a relevant Master’s degree is preferred
• Security certifications (e.g. CISSP, CISM, or CISA) are not required but may be pursued over time as part of your professional development
• Familiarity with, or exposure to, risk-based security frameworks (e.g. ISO 27000, NIST, SOC2)
• Experience with, or understanding of, technical IT operations or infrastructure is considered an advantage
• Strong communication skills in Dutch and English are required, as you will work with local and international teams and stakeholders

Not sure whether to apply because you don’t meet every requirement? If this role excites you and you see yourself in the profile, we’d love to hear from you. Because we believe talent grows and shows up in many different ways.

What will you do?

As an IT Security Advisor GRC (Governance, Risk & Compliance), you’ll play an important role in safeguarding our organization’s information assets and supporting compliance with internal policies and industry standards. Your responsibilities will include conducting risk assessments, evaluating security controls, and partnering with product owners to identify and remediate vulnerabilities. You’ll provide guidance to teams, support adherence to security best practices, and perform supplier IT security evaluations.

You’ll become part of a dynamic and collaborative IT Security team that values innovation, transparency, and continuous improvement. We foster a supportive environment focused on knowledge sharing and personal growth.

In this role, you’ll work closely with colleagues across IT, procurement, and business functions, as well as external partners and suppliers. Our organization is committed to professional development, cross-functional collaboration, and creating a culture where your contribution makes a tangible impact.

This is what we offer

• 30 vacation days (on a full-time basis) and the option to buy more days or sell your vacation days.
• At KPMG we work hybrid, so you can work from home, from the client or at the office.
• A completely furnished home office.
• Reimbursement of your travel expenses with a NS business card or travel allowance
• A laptop and iPhones.
• Choice to pick from different courses which contribute to your own personal and professional development.
• Focus on well-being! There is a gym at the Amstelveen office or you can get a discount for a gym near your house and you get access to different health and/or vitality programs.
• ‘Together’ is one of our core values. So you can count on different social activities, like team events, drinks with colleagues and events with all your KPMG colleagues.