Information Security Officer

NN Group is focused on centralisation and standardisation of its products and services. This applies to the Security department of Group IT (Group CISO) as well. Whether it's Defensive Security, Offensive Security or the Governance of the Security Policies and Standards we want to offer the best security services to our clients.

Who you will work with:

The BSO team within Group CISO is a small but very driven and tech savvy team. The team consists of highly skilled, motivated, and cooperative Security Officers and a Business security Officer. You will be working with enthusiastic colleagues having a diverse background focusing on delivery and collaboration always keeping an eye on the security of our services.

Your impact at NN

Are you passionate about safeguarding digital products and building a culture of security? We are looking for a proactive Information Security Officer (ISO) to support the BSO team in leading our information security efforts and ensure compliance with industry standards, legal requirements, and internal policies. As ISO you will play a vital role in protecting our systems, data and people from emerging threats.

The tasks you will perform

As Information Security Officer (ISO) for Group CISO, you make sure that the products we are offering are secure and compliant. You have a thorough understanding of IT infrastructure and security services, as well as modern information security practices. Together with a team of security officers, you support the teams within Group CISO (product managers, product owners and DevOps teams). You make sure security is embedded in the daily practice of the teams and make sure security topics get the right priority together with the Product Owners. Next to this you keep track of progress on important security initiatives and IT controls, to monitor and steer on this.

Your responsibilities include:

• Support the development, implementation and maintenance of information security standards, policies and procedures.
• Identify and assess security risks and advise on mitigation plans across multiple teams.

• Ensure compliance with regulations such as ISO27001, GDPR and DORA.

• Driving, coordinating, and reporting on central improvement initiatives for security processes and procedures across NN Group. Being able to convey your message to both management teams as well as DevOps teams.

• Contribute on topics such as AI, Threat Modelling, Control Automation, et cetera.

• Supporting devops teams in delivering of evidence to show control effectives on their products and reviewing these evidence.

• Promote security awareness across the organization.

The knowledge and experience you bring

• University degree (Bachelor's or higher) and 2–5 years of experience in information security.
• Proficient English (B2) with the ability to communicate with technical and non-technical stakeholders.
• Expert PC skills and broad technological knowledge (Windows, Linux, databases, networks, Azure, AWS).
• Proven experience with risk assessments and information security practices.
• Familiarity with SIEM tools (e.g., Splunk), DLP, and ServiceNow is an advantage.
• Capability to advocate and enforce internal security guidelines.
• Security certifications such as CISSP are a plus.You are proactive and result-driven and ensure you meet agreements made
• You are concise and have an eye for detail, while keeping the overall picture and goal in mind
• You have a clear communication style and know how to align with and report to higher management and your stakeholders. You know how to maneuver in political environments
• You have hands-on experience with security and risk processes and procedures, so that you understand what impact changes to these processes and procedures can have on the organization
• You are strong on content, but understand organizational challenges and can move security forwards in a professional, pragmatic, and cooperative way of working

Perks of joining NN

• We allow you to work where you feel the most comfortable, whether it is in the office or from home, and we contribute to your home office expenses every month.
• We understand the importance of having a work-life balance, which is why we offer 5 weeks of vacation, 5 well-being days, additional paid time off for personal and family events, and 1 volunteering day to support our community.
• In addition to your base salary you will have a lump-sum meal allowance, up to CZK 20,000 in the Cafeteria per year, the possibility of arranging a MultiSport card, the possibility of contributing to supplementary pension insurance / supplementary pension savings, and a discount on life insurance.
• We believe that your professional and personal growth is crucial, which is why we provide you with tailor-made professional training.
• Your friends and acquaintances are a valuable source of talent for us, which is why we offer up to 60,000 CZK as a reward for recommending a suitable candidate.
• A business laptop and an iPhone with a paid O2 tariff and a data package are basic tools for your work.

How we hire

After reviewing your application, including your CV in English, you will receive a short phone call from Erika (Talent Acquisition Specialist) to discuss basic details about your previous work experience and the open position. If everything goes well, we will meet twice in total. The first round will be an online, more technical interview with our colleagues from the Netherlands. The second round will focus on HR topics and cultural fit, where you will meet Daniel (your potential manager) and Erika from HR.