GRC Security Compliance officer
the role
As a security compliance officer, you are part of the information security team. This team is responsible for the full breadth of information security at Randstad, from defining Randstad’s information security policy to providing operational services that help keep Randstad secure. We’re looking for a new colleague that will be responsible for the 2nd line of defense for Randstad Global in Information Security. You’ll work with Operating Company teams, Global IT colleagues and partners to support them on applying Randstad’s Information Security policy, ensuring provable compliance and management of related risks. Of course you are not alone in this, in this role you can rely on colleagues responsible for the IS policy and assurance and business risk & audit to support you.
main accountabilities
- Audit Coordination & Leadership: Coordinate the ICR team by maintaining the audit planning for Randstad markets and coaching team members to enhance their audit skills. Serve as the primary contact person for partners performing external audits.
- Compliance Strategy: Improve the Information Security 2nd line of defense role at Randstad Global by overseeing risk and monitoring IT/IS first-line controls across Operating Companies.
- Audit Execution: Conduct periodic internal compliance reviews and audits to assess the effectiveness of the Information Security Management System (ISMS) in local markets, ensuring adherence to ISO 27001 standards and regulatory requirements.
- Gap Analysis & Remediation: Perform gap analyses to evaluate process effectiveness against corporate security policies; provide actionable recommendations and proposed remediation strategies to drive improvement.
- Advisory & Reporting: Provide guidance to global colleagues on becoming compliant with control frameworks and prepare comprehensive audit reports for senior management (including C-level), highlighting findings and strategic recommendations.
candidate profile
Skills
- Good command of the English language
- Excellent analytical skills
- Ability to operate in a matrix organization
- Self-starting and self-supporting
- Ability to manage a team without direct reporting lines
- Hands-on
- Service-oriented
- Likes to work in an international environment with different cultures
- Enthusiastic and pragmatic, result driven
Qualifications
- Education: A bachelor’s degree in Information Technology, Cybersecurity, or a related field (Note: The Global Catalog standard for E6 typically suggests a Master’s degree, but relevant experience often compensates).
- Experience: At least 5 years of experience in conducting internal audits and implementing information security best practices.
- Certification: Certified Lead Auditor in ISO 27001:2022 standard is required.
- Knowledge: Strong understanding of information security principles, controls, and frameworks. Basic understanding of Third-Party Risk Management (TPRM) is preferred.
- Leadership: Proven ability to operate in a matrix organization and manage a team or coordinate efforts without direct reporting lines.
your competencies
Within Randstad we defined the following leadership competencies:
We set direction
- Think strategically (task alignment): understands the overall company direction and ensures daily tasks align with team goals and immediate priorities.
- Transform for Future (Personal Adaptation): Proactively adopts new ways of working and demonstrates a high level of adaptability to change.
We Achieve
- Drive for results (task accountability): executes with operational excellence and integrity. Adheres strictly to compliance and safety protocols while taking full ownership of assigned tasks.
- Foster collaboration (teamwork): shares knowledge and collaborates effectively with colleagues, talent, and clients to achieve shared goals.
We Care
- Inspire teams (positive contributor): respects diverse perspectives to help maintain a safe, inclusive, and welcoming team environment.
- Grow people (self-development): takes ownership of their own career path, actively seeking learning opportunities and leveraging feedback for continuous improvement.
Core expectation: lead by example
- Model the behavior: demonstrates integrity and accountability in every action, including having the courage to speak up regarding non-compliance or observed issue
join the world's most equitable talent company.
At Randstad, we combine our passion for people with the power of today’s technologies. If you are ready to drive the Partner for Talent strategy from the heart of Europe, we invite you to apply.
Contact: Reach out to our Recruitment Business Partner, jennifer.roberts@randstadsourceright.co.uk for the full job spec and a confidential discussion.
