You’re an excellent candidate for Bizzdesign because you …
- Are based in the Netherlands and can commute to our office in Utrecht 2 days per week
- Speak fluent English
- Have +3 years of experience in a similar role
About the role
This role is designed to play a key role within Bizzdesign’s Security & Compliance function. You will own and drive our security assurance program, covering frameworks such as ISO 27001, SOC 2, and other relevant standards.
In this role, you combine governance, risk & compliance (GRC) with a strong customer-facing component, acting as a trusted security partner for both internal stakeholders and external clients. Following recent mergers, you will have the opportunity to shape and streamline the security posture across the group, driving harmonisation, maturity, and scalability.
What will you do
- Own and manage Bizzdesign’s security frameworks (ISO27001, SOC2, etc.) and associated control environment.
- Design, implement, and continuously improve security policies, procedures, and controls.
- Act as the primary contact for customers and prospects on security topics (RFPs, due diligence, calls) and work with legal on contract reviews.
- Translate security requirements into clear, business-friendly responses and solutions.
- Drive risk management activities, including identification, assessment, and mitigation tracking.
- Lead and coordinate internal and external audits, including preparation, evidence collection, and follow-up.
- Work closely with the product teams to ensure controls are practical and effective.
- Support and lead security improvement and transformation initiatives across the organisation
What we are looking for
- 3–5 years of experience in Information Security, GRC, or Security Assurance.
- Strong knowledge of frameworks such as ISO27001, SOC 2 (additional frameworks are a plus).
- Experience handling customer security questionnaires and discussions.
- Ability to balance compliance requirements with practical implementation.
- Strong stakeholder management skills, including communication with senior internal and external stakeholders.
- Fluent in English, Dutch is a plus.
Nice to have:
- Relevant certifications (e.g., CISSP, CISM, ISO27001 Lead Implementer/Auditor).
- Experience in a SaaS or product-driven environment.
Experience with Compliance Automation Tools e.g. Vanta, Drata.
-
What we offer
- A base salary complemented by variable compensation.
- A premium pension plan to help you build a secure and comfortable future.
- 28 vacation days to recharge, with the option to buy up to 10 extra days whenever you need more freedom and flexibility.
- Hybrid working that truly works: enjoy a balance of 2–3 collaborative in-office days, with the remaining days designed for focused work from home.
- Smooth commuting with an NS Business Card or mileage reimbursement. Your journey, your choice.
- Top quality IT equipment from day one, plus a personal tech budget so you can tailor or upgrade your setup to your liking.
- A monthly work-from-home allowance to help you create your ideal home office environment.
- Global collaboration in an international environment, working alongside talented people from all over the world.
The final offer will be positioned fairly within the salary range based on your experience, skills, impact, and scope of responsibilities.
Recruitment process
In this role, you can expect the following interviewing process:
- 1st Interview with Internal Recruiter (45 minutes)
- 2nd Interview with our Information Security Manager and Product Security Manager (60 minutes - Online or face to face)
- 3rd Interview with our Director of Information Security (60 minutes - face to face)
-
Please submit your application in English, as it’s our company’s language, and you’ll be using it daily once you’re part of the team.
- Please apply through our website or via the LinkedIn job post. Applications sent by email will not be reviewed.
- We are not considering agency applications for this position.
- We may use AI-based tools to support parts of the recruitment process, such as reviewing applications or resumes. These tools support our recruitment team but do not replace human decision-making, and all final hiring decisions are made by people.
Bizzdesign is a global leader in enterprise transformation software. Our Enterprise Transformation Suite enables organisations to plan, design, and govern change, bringing strategy and execution together in a single, trusted view. We empower teams to make better decisions with data-driven insights, helping them become more efficient, agile, and resilient. We believe successful transformation is about alignment, connecting strategy to execution, and business to IT.
At Bizzdesign, our culture is the engine that turns bold goals into results. We move as one, and everyone’s contribution matters. We believe that when we work together and hold ourselves accountable, we achieve more and create an environment where everyone can thrive. We value innovation, building with purpose, striving for excellence, and authenticity.
Headquartered in the Netherlands and present in more than 19 countries, our team of 500+ professionals represents over 32 nationalities. Trusted by more than 2,000 organisations worldwide, our deep expertise supports enterprises on their transformation journey.
DEI Statement
Bizzdesign stands for equity and inclusion. We believe that a diverse and inclusive workplace is essential to our success, and we are committed to building a team that reflects a wide range of backgrounds, perspectives, and skills.
