Sr Security Governance Analyst
Archer Daniels Midland
Senior Security Governance Analyst – NIS2 Compliance – Netherlands
This is a full-time, exempt level position.
Position Summary:
We are seeking an experienced Senior Security Governance Analyst to lead the implementation and compliance of the Network and Information Security (NIS2) Directive. This position is crucial in ensuring that our organization meets the updated requirements under the NIS2 framework to safeguard our critical information and infrastructure. As the Senior Security Governance Analyst, you will work closely with cross-functional teams to develop, implement, and maintain cybersecurity governance, risk management, and compliance policies that align with NIS2 standards. This role will report to the Director Security Governance & Awareness within Global Information & Cyber Security as a member of the security governance team, contributing various projects and initiatives as assigned.
Job Responsibilities: Lead the development and execution of NIS2 compliance strategies and frameworks.Monitor and assess organizational risks related to the NIS2 Directive and recommend risk mitigation strategies.Ensure compliance with the NIS2 Directive by establishing cybersecurity governance policies and procedures.Collaborate with key stakeholders to perform regular security assessments, audits, and ensure incident response preparedness.Maintain and update cybersecurity policies in line with changes in NIS2 regulations and best practices.Coordinate with legal, IT, and security teams to ensure data protection and risk management efforts align with NIS2 compliance.Conduct training and awareness programs for staff on NIS2 regulations and cybersecurity best practices.Report on NIS2 compliance status to senior leadership, regulatory bodies, and other key stakeholders.Apply general industry and regulatory compliance knowledge to the benefit of the company and program.Compile, review, and analyze continuity information to provide recommendations, metrics, and reports for management review and decision making.Collaborate with key business units and capability stakeholders, including, but not limited to, all EU entities, Privacy, Global Technology, Internal Audit, InfoSec, Corporate Security, and HR to develop and improve NIS2 compliance across the enterprise.Perform functions in a timely manner and with extreme attention to detail, urgency, and thoroughness.A willingness to be on-call and travel as required by the role. May be required to work weekends and/or extended hours; Requires on call 24/7 support.Job Requirements:Bachelor’s degree in information security, cybersecurity, risk management, computer science, or related field; relevant certifications (CISM, CISSP, etc.) are highly preferred.5+ years of experience in cybersecurity governance, risk management, and compliance, with at least 2 years of specific experience with NIS or NIS2 Directive frameworks.Experience working in sectors covered by NIS2, such as finance, healthcare, energy, manufacturing, or telecommunications.Experience with operational technologies/industrial control systems.Strong understanding of network security, incident response, and data protection regulations.Proven record in implementing cybersecurity governance and compliance programs.Experience in conducting risk assessments, security audits, and working with internal and external stakeholders on compliance matters.Experience with business continuity and disaster recovery planning.Familiarity with relevant legislation, including GDPR, NIS Directive, NIS2 Directive and other international cybersecurity frameworks.Excellent communication skills, with the ability to translate complex regulatory requirements into clear, actionable business policies.Strong people skills with a demonstrated ability to gain the confidence and respect of senior managers.Entrepreneurial mindset and comfort working independently and driving own initiatives.Advanced skill level of MS Office suite, including PowerPoint, and proficient in Agile Methodology and Power BI (plus).Experience in Power BI a plus.Intellectual agility – the ability to learn and act on the latest information quickly and efficiently.Experience in managing complex projects.Analytical thinking, planning, organizing, and problem-solving skills.Strong written and verbal communication skills, presentation, and training skillsBasic knowledge and understanding of end-user computing tools, hardware, application software, network, communications, and mobile technologies.Basic knowledge and understanding of information security policies, standards, and processes.Ability to translate strategy into actionable plans impact organizational change.Familiarity with complex multi-national companies and distributed business models.Ability to work across the organization, building relationships and influencing peers and management through establishing trust and credibility.Applies sound judgment and creativity to solve complex problems.Ability to excel in a rapidly changing environment.Ability to drive discussions and influence decision making, strong presentation and reporting skills. Proficient in technical writing and leveraging various creative mechanisms to communicate to diverse audiences. Ability to communicate with and create documentation for technical and non-technical audiences. Strong leadership Limited travel required.
This is a full-time, exempt level position.
Position Summary:
We are seeking an experienced Senior Security Governance Analyst to lead the implementation and compliance of the Network and Information Security (NIS2) Directive. This position is crucial in ensuring that our organization meets the updated requirements under the NIS2 framework to safeguard our critical information and infrastructure. As the Senior Security Governance Analyst, you will work closely with cross-functional teams to develop, implement, and maintain cybersecurity governance, risk management, and compliance policies that align with NIS2 standards. This role will report to the Director Security Governance & Awareness within Global Information & Cyber Security as a member of the security governance team, contributing various projects and initiatives as assigned.
Job Responsibilities: Lead the development and execution of NIS2 compliance strategies and frameworks.Monitor and assess organizational risks related to the NIS2 Directive and recommend risk mitigation strategies.Ensure compliance with the NIS2 Directive by establishing cybersecurity governance policies and procedures.Collaborate with key stakeholders to perform regular security assessments, audits, and ensure incident response preparedness.Maintain and update cybersecurity policies in line with changes in NIS2 regulations and best practices.Coordinate with legal, IT, and security teams to ensure data protection and risk management efforts align with NIS2 compliance.Conduct training and awareness programs for staff on NIS2 regulations and cybersecurity best practices.Report on NIS2 compliance status to senior leadership, regulatory bodies, and other key stakeholders.Apply general industry and regulatory compliance knowledge to the benefit of the company and program.Compile, review, and analyze continuity information to provide recommendations, metrics, and reports for management review and decision making.Collaborate with key business units and capability stakeholders, including, but not limited to, all EU entities, Privacy, Global Technology, Internal Audit, InfoSec, Corporate Security, and HR to develop and improve NIS2 compliance across the enterprise.Perform functions in a timely manner and with extreme attention to detail, urgency, and thoroughness.A willingness to be on-call and travel as required by the role. May be required to work weekends and/or extended hours; Requires on call 24/7 support.Job Requirements:Bachelor’s degree in information security, cybersecurity, risk management, computer science, or related field; relevant certifications (CISM, CISSP, etc.) are highly preferred.5+ years of experience in cybersecurity governance, risk management, and compliance, with at least 2 years of specific experience with NIS or NIS2 Directive frameworks.Experience working in sectors covered by NIS2, such as finance, healthcare, energy, manufacturing, or telecommunications.Experience with operational technologies/industrial control systems.Strong understanding of network security, incident response, and data protection regulations.Proven record in implementing cybersecurity governance and compliance programs.Experience in conducting risk assessments, security audits, and working with internal and external stakeholders on compliance matters.Experience with business continuity and disaster recovery planning.Familiarity with relevant legislation, including GDPR, NIS Directive, NIS2 Directive and other international cybersecurity frameworks.Excellent communication skills, with the ability to translate complex regulatory requirements into clear, actionable business policies.Strong people skills with a demonstrated ability to gain the confidence and respect of senior managers.Entrepreneurial mindset and comfort working independently and driving own initiatives.Advanced skill level of MS Office suite, including PowerPoint, and proficient in Agile Methodology and Power BI (plus).Experience in Power BI a plus.Intellectual agility – the ability to learn and act on the latest information quickly and efficiently.Experience in managing complex projects.Analytical thinking, planning, organizing, and problem-solving skills.Strong written and verbal communication skills, presentation, and training skillsBasic knowledge and understanding of end-user computing tools, hardware, application software, network, communications, and mobile technologies.Basic knowledge and understanding of information security policies, standards, and processes.Ability to translate strategy into actionable plans impact organizational change.Familiarity with complex multi-national companies and distributed business models.Ability to work across the organization, building relationships and influencing peers and management through establishing trust and credibility.Applies sound judgment and creativity to solve complex problems.Ability to excel in a rapidly changing environment.Ability to drive discussions and influence decision making, strong presentation and reporting skills. Proficient in technical writing and leveraging various creative mechanisms to communicate to diverse audiences. Ability to communicate with and create documentation for technical and non-technical audiences. Strong leadership Limited travel required.
Confirm your E-mail: Send Email
All Jobs from Archer Daniels Midland