MET DECENNIA ERVARING, VOLLEDIGE FOCUS EN GROTE GEDREVENHEID VINDEN WIJ DE PROFESSIONAL/VACATURE DIE U ZOEKT.
Information Security Officer - Leasing
LeasePlan is building a global Core Leasing Solution (CLS) using SAP technology and Amazon cloud technology which will be further rolled out throughout the LeasePlan Group in the upcoming year. Next to this, LeasePlan has started delivery of enhanced customer journeys via the development of new, data-driven digital products and services.
Providing advice and guidance to stakeholders and implementing suitable, costeffective security measures throughout the development phase (Agile/DevOps).
Support the organisation in achieving and maintaining the required security maturity level for CLS (COBIT level 3-4).
Act as liaison to the Group Information Security Officer and Information Security Officers of other LeasePlan Entities.
Ensure that requirements related to Information Security are embedded within the CLS programme and it’s deliverables. Work closely together with all streamleads within the program.
Develop and maintain security standards for technologies used within CLS (based upon LP policies and vendor best practices).
Conduct periodic reviews related to information security and coordinate the follow up of issues (for example on the SAP application landscape, AWS infrastructure, servers, databases, etc.).
Conduct periodic Risk Assessments related to information security and coordinate the follow up of issues.
Organise periodic penetration tests and coordinate the follow up of issues.
Support in the design of procedures related to information security and periodically monitor the effectiveness of these procedures.
Ensure for periodic progress reporting to Program Management (in cooperation with the Risk Manager) and the Group Information Security Officer.
Support in Internal and External audit activities and support in the follow up of risk mitigating actions.
Develop and maintain a security incident procedure. Ensure all security incidents are timely recorded and followed up.
Review vulnerability and patch management results within the CLS environment and ensure appropriate follow up is taken
University degree (Master’s) in e.g. IT or related field
Preferably an Information security professional qualification (e.g. CISA, CISSP, RE)
Minimum of 5 years working experience in Information Security within an international organisation
Good understanding of the technical domain / technology stack (SAP/AWS)
Good understanding of information security concepts
Good understanding of current Cyber Security threats and mitigating controls
Good understanding of cloud concepts (IaaS/PaaS/SaaS) and cloud security models
Good understanding of ISO27001/ISO27002, ITIL and COBIT
Good understanding of regulatory requirements for financial institutions
Preferably a good understanding of the General Data Protection Regulation (GDPR)
Preferably 3-4 years working experience with SAP
Preferably 1-2 years working experience with AWS cloud services
Preferably working experience in an environment that applies agile/scrum
Support in providing advice and guidance to stakeholders and implementing suitable, cost-effective security measures throughout the development phase (Agile/DevOps)
Preferably experience with outsourcing
Strong communication skills / team player
Strong analytical skills
Willingness to travel (occasionally)
English (fluent, verbally and written)
LeasePlan is one of the world’s leading fleet management companies, with 1.7 million vehicles under management in over 30 countries. The company's core business involves managing the entire vehicle life-cycle for their clients, taking care of everything from purchasing, insurance and maintenance to car re-marketing. With over 50 years’ experience, they are a trusted partner for corporate, SME, private and mobility service clients. Their mission is to provide what’s next in mobility via an ‘Any car, Anytime, Anywhere’ service – so you can focus on what's next for you.