Risk & Compliance Officer

Location

Diemen (Amsterdam, NL)

Department

Information Security & Compliance

Date

1 May 2020

Apply

Share this job

 

Wanted: Risk and Compliance Officer excited to shape the future of mobility!

 

Our drive 

We love cities. And we’re doing something to make our cities healthier, cleaner and more liveable. How? By providing parking solutions that are simple, quick and effortless. Today, PARK NOW is the world’s leading provider of on-demand mobile payments for on- and off-street parking. We make life easier for more than 17,000,000 drivers in over 700 cities in Europe.

 

About the role:

At PARK NOW, we take privacy and data security very seriously. We are committed to protect and secure all our customer and employee financial and personal data. We are ISO9001, ISO27001 and PCI DSS certified. Plus, you will have the commitment and support from our board for all security-related matters.

As part of the Information Security & Compliance department, the Risk & Compliance Officer has to assess and support the team in overseeing all technology and business-related, Information Security and Privacy compliance issues across the European organisation.

You will conduct objective risk assessments of our organization’s compliance, with regulatory, organisational and commercial requirements governing our organisation's information technology systems. Work closely with the other roles in and report to our GCISO.

You will be planning and conducting internal audits of our systems, processes and people (readiness of teams) as a mandatory requirement of our regulatory requirements. Developing, improving and implementing policies, procedures and controls to ensure that our organisation's practices remain observant to all pertinent local, state/province/county and federal laws and industry.

 

Responsibilities:

  • Conduct Information Security risk assessments including and documenting controls, identifying potential gaps and or inconsistencies and making sound recommendations for improvement and/or migration. Work directly with the various business units to facilitate Information Security and risk management processes. Assist with action plans, policy and procedural changes for risk response.
  • Communicate risk posture to risk owners and stakeholders on a scheduled basis.
  • Conduct internal audits and coordinate audit-related tasks such as ensuring the readiness of managers and their organisations for audit testing and facilitating the timely resolution of any audit findings.
  • Follow up on deficiencies identified in monitoring reviews, self-assessments, automated assessments, and internal and external audits to ensure appropriate remediation measures have been taken.
  • Support the tools and processes involved in Information Security risk assessment, management and governance.
  • Identify the associated compliance control gaps and oversee the documentation, implementation and testing of the entire compliance control portfolio

 

Knowledge and Skills:

  • Knowledge and understanding of information risk concepts and principles as a means of relating business needs to security controls;
  • Strong analytical skills in order to analyse risk, audit findings, and relate them to appropriate controls, processes and people.
  • Understanding of the business impact of security tools, technologies and policies.
  • Hands-on, able to see the holistic picture as well be able to dive in the details / depth and vice versa.
  • Excellent verbal, & written communication ,interpersonal  and presentation skills, including the ability to communicate effectively with the all layers of the organisation, both at a technical and business level;
  • Demonstrate positive, results-driven team approach.
  • Pro-active/self-starter, capable to work with minimal supervision.

 

Experience:

  • Audit training and/or audit certifications (internal audits) required.
  • One to two years' risk process experience
  • A bachelor's degree in information systems or equivalent; M.B.A. or M.S. in information security is preferred.
  • Experienced with ISO 27001 and PCI-DSS is an advantage.

 

Our offer 

Want to be part of a dynamic fast-growing scale-up and global, urban mobility leader? Yes! Want to make an impact? Yes!

We offer a lot of autonomy and room to develop your talents. We know our people are at their best when they enjoy a good work-life balance, which we fully support. You can expect great employment benefits, including a mobility plan, weekly bootcamps, monthly massages, lunch, Friday beers and snacks, daily fresh fruit, fun team events and much more!

 

PARK NOW. We are driven to improve. Come join the ride!   

 

Apply now  

Share this job