Cyber Risk and Assurance Officer

How you can make a difference as Cyber Risk and Assurance Officer

About Ahold Delhaize

We’re Ahold Delhaize, one of the world’s largest food retail groups and a leader in both supermarkets and e-commerce. Together with our 17 strong local retail brands in the United States, Europe and Indonesia, we make a meaningful difference in the lives of our brands’ customers, our people and the world around us. We offer a highly dynamic, international work environment in which our associates thrive.

Your new work environment

As Specialist, Cyber Risk & Assurance, you will join the Group Cybersecurity organization at Ahold Delhaize at Group level. In this central role, you support the group’s cybersecurity risk and assurance program and help build mature cyber risk and assurance capabilities across Ahold Delhaize and its Brands through effective risk management processes and tooling.

You will be part of the Cybersecurity Governance, Risk and Compliance team within the Group Cybersecurity Office and report to the Head of Cyber Risk & Security Assurance. In this position, you collaborate with cybersecurity colleagues and stakeholders across the organization to support the execution of the cyber risk management framework and security assurance initiatives. Together, you help embed a strong risk mindset and ensure risks are assessed, registered, reported and monitored consistently.

You will work in a fast-paced, international environment where complex cybersecurity topics (risk assessments, risk analysis and reporting, scenario-based assessments, control monitoring and testing) need to be translated into clear actions and insights. You will partner with critical and senior stakeholders, while having the scope to bring in your own ideas to improve and innovate the security risk management and assurance approach.

Key responsibilities of your role

You will work on a variety of assignments that cover the full range of cyber risk management and security assurance, including:

• Carry out periodic cyber risk assessments within the cybersecurity risk management framework and ensure risks are identified, registered, reported, and monitored consistently.
• Monitor the threat landscape and vulnerabilities, partnering with relevant teams within the Group Cybersecurity Office to translate insights into risk actions.
• Streamline the security risk exception and risk acceptance process, ensuring strong governance and alignment with the risk register.
• Work closely with risk owners to monitor risks and ensure they are managed within the agreed risk appetite, escalating where needed.
• Develop and refine cyber risk metrics, dashboards, and reporting to provide clear, actionable visibility for stakeholders.
• Support the security assurance program by periodically testing security controls, supporting maturity assessments, and reviewing assurance reports (e.g., ISO, SOC2/ISAE).
• Conduct third-party risk assessments and collaborate with Legal and Privacy teams to embed security requirements into third-party contracts.
• Act as a risk mindset ambassador across the organization by organizing training and awareness and identifying opportunities to embed risk elements in GCSO ways of working.

Requirements:

• Bachelor’s degree (or equivalent technical training) in IT, Information Systems Security, Cybersecurity, or a related field.
• 5+ years of experience in cybersecurity risk processes (risk assessments, tracking, reporting).
• Strong knowledge of cybersecurity threats, controls, and best practices.
• Familiarity with recognized frameworks/standards and regulatory requirements (e.g., NIST, COBIT, ISO, GDPR, PCI).
• Experience with GRC platforms and understanding of security-related legal and compliance requirements.
• Strong communication and presentation skills, with a results-oriented and proactive mindset; able to work independently with minimal supervision.
• Excellent command of English (written and spoken) and willingness to travel up to 15% to support Ahold Delhaize locations.

What’s in it for you?

Aside from what we ask of you in this role, we also have a great deal to offer you: plenty of growth opportunities and various cross-brand career options; flexible working hours; hybrid working – we encourage you to spend at least 3 days a week, on average, at the office or one of local warehouses; and the chance to drive meaningful change on a global scale. You can look forward to a good work-life balance, and the chance to work in an inclusive environment that wholeheartedly encourages growth and welcomes you just the way you are.