TenneT Startpagina

The Lead Information Security Officer (LISO) works in a second line of defence and is responsible for overseeing and managing the Business Technology Organisation’s (BTO) ISMS, ensuring the confidentiality, integrity, and availability of company data and systems. This role orchestrates a team of security professionals and works closely with IT-Operations, legal, compliance, and risk management teams to develop, implement, and enforce security strategies to protect organizational assets from cybersecurity threats.

• You are the first contact for security topics within the department;
• You orchestrate the security topics with the ISO’s and security teams setting clear goals, priorities and objectives;
• You develop and implement the BTO’s cybersecurity strategy, in alignment with business goals and regulatory requirements;
• You provide direction and oversight for the design, development, and implementation of security policies, procedures, and controls;
• You support a comprehensive risk management program to identify, assess, and mitigate security risks;
• You ensure that the organization’s data is secure, systems are protected from breaches, and compliance with internal policies, security regulations and standards is maintained;
• You continuously review and update security practices to align with industry standards, laws, regulations, and best practices;
• You coordinate with security professionals and IT teams to ensure security controls are implemented effectively across all systems;
• You lead the development and implementation of cybersecurity training programs to educate BTO’s employees on best practices and regulatory compliance;
• You advise and lead incident response plans to address data breaches, cyberattacks, and other security incidents;
• You ensure thorough documentation and reporting of security incidents, including post-incident reviews and corrective actions;
• You have a solid knowledge and collaborate with IT and business continuity teams to develop and maintain disaster recovery and business continuity plans;
• You ensure that cybersecurity risks are included in the company’s disaster recovery strategies, ensuring rapid recovery from incidents;
• You coordinate/facilitate internal and external security audits to ensure continuous compliance and readiness for external certifications;
• You establish security requirements and ensure that our suppliers are compliant;
• You report on the status of BTO’s overall security posture.

• You are able to work with different stakeholders and know how to quickly get to the heart of the matter;
• You have expertise in network security, cloud security, encryption technologies, endpoint protection, and identity and access management (IAM);
• You have familiarity with security tools such as SIEM (Security Information and Event Management), firewalls, IDS/IPS, anti-malware, and vulnerability management software;
• You have strong experience in risk management, threat detection, incident response, and security operations;
• You have knowledge in frameworks such as ISO 270001, NIST and CIS;
• Certifications like CISSP, CISM, CRISC and CISA are a plus;
• You have an HBO/WO working and thinking level and have a completed training in the field of Information Technology, Information Security, General Security, or Business Administration with demonstrable experience in information security.

Management;

• Strong on social-communication skills. You have and maintain a relevant internal and external network allowing you to identify trends, developments and opportunities from the market translate to TenneT's environment;
• You are willing to travel at home and abroad for knowledge exchange and coordination with colleagues;
•  In addition, you have a good command of English language. Dutch language is a plus.