An independent and highly skilled Information Security Expert to join our client’s team on an expertise-driven assignment. We are looking for a specialist who can hit the ground running to deliver comprehensive, end-to-end security audits within the critical domain of Supply Chain Security. If you are a self-starter who thrives on delivering deep-dive analyses and structured risk assessments in a collaborative environment, this project is for you.
As an Information Security Expert, you are responsible for conducting comprehensive, end-to-end audits of systems, processes, SaaS platforms, and internal controls to ensure compliance, security, operational efficiency, and risk mitigation.
This role is centered on specialist audit deliverables rather than ongoing operational responsibilities. You will operate with a high degree of independence, from planning and evidence gathering through to final reporting, while collaborating closely with cross-functional teams.
Conduct detailed technical analyses, evidence gathering, root-cause identification, and actionable reporting.
Evaluate control designs versus actual operational effectiveness using direct system evidence rather than design intent alone.
Provide key insights into technical gaps, emerging security risks, and strategic improvement opportunities.
Audit Execution: Lead and conduct thorough end-to-end audits of systems, processes, SaaS platforms, and third-party vendors.
Technical Reviews: Analyze technical configurations, including access controls, authentication mechanisms, security settings, and system behaviors.
Log & Data Analysis: Review and interpret log files, audit trails, and system monitoring data to validate control effectiveness and locate weaknesses.
Architecture Assessment: Evaluate cloud, SaaS, and platform architectures against shared responsibility models to call out security and ownership gaps.
Stakeholder Engagement: Actively engage and collaborate with internal and external stakeholders, including Risk, Procurement, Contract Owners, and suppliers.
Agile Collaboration: Work aligned with DevOps & Agile methodologies within an international team.
You are a highly analytical, detail-oriented security professional who enjoys digging deep into technical systems to identify vulnerabilities and process gaps. You possess strong critical thinking skills and have a talent for translating complex technical findings into clear, non-technical business language for executive stakeholders. You are comfortable working independently in a fast-paced environment and managing diverse stakeholder relationships.
Audit Background: Typically 6-8 years of experience in internal audit, security auditing, IT risk, compliance, or similar specialist roles.
SaaS Expertise: Proven experience auditing SaaS environments and cloud architectures is a strong plus.
Control Evaluation: Demonstrated experience testing actual operational control effectiveness using direct system evidence and technical configurations.
Technical Domain Knowledge: Solid understanding of IT platforms, applications, security architectures, and Identity and Access Management (IAM), including RBAC, PAM, access governance, and user lifecycle controls.
Standards & Frameworks: Strong familiarity with industry standards and compliance frameworks such as ISO 27001, SOC 2, NIST, CIS, and GDPR.
Methodology & Tools: Comfort working in a hybrid, DevOps, and Agile environment.
Logistics & Language: * Full professional fluency in English (the working language of the team).
Since 2000 we provide professional solutions to organizations ranging from tech start-ups to global players. From our offices in Amsterdam and London we have built an international and local network of skilled employed professionals and contractors fuelled by our passion for connecting skills with projects. Over the years we have fulfilled over 1700 requirements and nowadays we consistently have 250+ professionals recruited and relocated from 14 countries allocated to various projects. Our strength is the way that we see and treat people. This will always be a key factor in our strategy for many years to come.
