Joining Hypersolid as our Information Security Officer means taking ownership of the development, implementation, and continuous improvement of our Information Security Management System (ISMS). You translate security strategy into operational practice, ensuring that policies, controls, and frameworks are not only well documented but also genuinely embedded in day-to-day operations.
You operate at the intersection of governance and operations. You keep a clear overview of risks and compliance, advise management on security matters, and ensure that what's agreed on paper is reflected in how we actually work. When audits, incidents, or compliance gaps arise, you work closely with management and colleagues across the organization to improve security step by step.
You will report to the Teamlead Security and work as part of a small, focused security team of three. Your work ensures that our clients and their data are protected in a rapidly evolving digital landscape.
Additional responsibilities:
-
Lead and execute internal audits and vulnerability assessments.
-
Develop, review, and maintain security policies, standards, and procedures.
-
Drive ISMS governance and steer the PDCA cycle.
-
Advise operational and tactical management on risk exposure and improvement initiatives.
-
Monitor and report on compliance with ISO 27001, NIS2, and other applicable standards.
-
Lead and contribute to security projects, including supplier reviews and control assessments.
-
Design and deliver security awareness programs and training.
Who are we looking for?
We are looking for someone who is ownership-driven, structured, and pragmatic. You communicate clearly with both technical and non-technical stakeholders, stay calm under pressure, and know how to turn compliance requirements into workable, lasting solutions. You don't just manage frameworks, you make them real. You understand that security only works when people understand and embrace it, and you bring the skills to make that happen across the organization.
As a person, you bring:
-
A proactive and analytical mindset. You spot risks and translate them into concrete actions.
-
Strong communication and stakeholder management skills, from operational teams to senior management.
-
A structured, process-oriented approach with an eye for continuous improvement.
-
The ability to work with teams across the organization to drive improvements together.
-
Reliability and tenacity when driving change across complex organizations.
Requirements
-
Bachelor's degree (HBO) or higher in IT, Security, or a related field, or equivalent professional experience.
-
Several years of experience in ICT and/or security auditing.
-
Solid working knowledge of ISO 27001, NIS2, NIST, SOC1, and SOC2 frameworks.
-
Relevant certifications (or actively pursuing), such as CISSP, CISM, or CISA.
-
Familiarity with project management methodologies (PRINCE2 or Agile is an advantage).
-
Based at our headquarters in Alkmaar, with the option to work from home up to one day per week.
-
Willing to travel regularly to our Amsterdam office.
-
Fluent in English and Dutch.
