In the coming period, the Digital Security & Risk Office will require a Senior Digital Risk Officer & Security Architect to take on various digital risk management and cybersecurity architecture activities.
The focus of activities will be on actively, consciously, and formally monitoring, managing, and reporting the digital risks in our landscape. This monitoring is, of course, carried out together with the 20+ risk owners.
An excellent knowledge of IT, OT, and IoT solutions, security standards, and security implementations is required.
For these functions, candidates must have very strong knowledge of international security standards regarding information security (ISO27x) and risk management standards. This knowledge is necessary, supplemented by the required experience, to apply these standards in real-life cases. The outcome of the security architect is implementable (security) architectures that are robust against cyber risks.
Preparing risk analyses and organizing and guiding “Threat Modeling” is also part of the responsibilities of the desired profile.
As the Digital Security & Risk Office, we translate the validated Fluvius guidelines from the CISO & DPO into concrete security architectures.
In other words, candidates can bridge the gap between theory and practice, so excellent communication skills are a MUST. The Senior Digital Risk Officer & Security Architect essentially serves as the ‘risk & security’ glue between the various stakeholders.

Context/Requirements

As the largest distribution network operator in the Benelux, (cyber) security & compliance is high on the Fluvius agenda.
Due to the accelerated digitalization in our activities (rollout of digital meters, smart grids, role as data manager, digital customer interaction, …), there are, besides many benefits, also a number of new risks that we need to keep under control.
There are also many new legal requirements (NIS2, CER, ...).
The identification and management of digital risks are handled within the Digital Security & Risk Office.
These digital risks are mapped by the Digital Risk Officer, followed up with the risk owners, and reported to senior management.

This assignment includes:

• Monitoring & managing the digital risks in our landscape, in close collaboration with the 20+ risk owners.
• Following up on the implementation of the validated control measures.
• Team player: the candidate must be able to collaborate well in a large digital ecosystem. Experience in companies with more than 200 ICT professionals is a plus.
• Ability to work independently.
• Possess strong communication skills.
• Have a good personal network to consult with regarding security challenges for which you do not immediately have an answer.