IT Risk and Compliance Officer -Unit: BTO | Security, Risk and Compliance Department

For TenneT we are looking for an experienced: IT Risk and Compliance Manager – focus will be on strategic risk management.

Unit and department:
The Security, Risk, and Compliance (SRC) department within TenneT’s Business Technology Organization (BTO) is a critical function that ensures the secure, compliant, and resilient operation of TenneT’s IT systems and processes. As a trusted partner to the organization, SRC plays a pivotal role in safeguarding TenneT’s information assets, mitigating risks, and ensuring compliance with applicable regulations, standards, and internal policies.
As part of the Business Technology Organization, the SRC department ensures that TenneT’s IT systems and processes are not only efficient but also resilient and compliant in a dynamic regulatory environment. By enabling proactive risk management and compliance adherence, SRC supports TenneT’s mission to deliver reliable and secure energy transmission services across its regions of operation.

Tasks and responsibilities:
• Serve as a trusted advisor for IT teams, providing guidance on risk management, audit, and compliance while collaborating with other Risk and Compliance Officers across departments.
• Execute and manage the risk management process within the unit, maintaining the risk register in line with the organization’s methodology.
• Support first-line operational teams in d-noneing audit methodologies, designing IT controls, and implementing mitigation measures, while monitoring progress with action owners.
• Coordinate and review control self-assessments to ensure effective and consistent execution across teams.
• Enhance IT risk awareness by promoting initiatives and providing targeted guidance.
• Conduct independent quality monitoring checks to evaluate the effectiveness of implemented processes and controls.
• Oversee compliance with laws, regulations, standards, and audit recommendations within the unit.

Requirements:
• Strong expertise and hands-on experience in risk management (min. 5 years in a similar role), with a proven ability to identify, assess, and mitigate risks effectively.
• Strong proficiency in process management and compliance within the IT domain, ensuring alignment with organizational goals and regulatory requirements.
• Ability to work independently and effectively engage with diverse stakeholders, quickly identifying and addressing core issues.
• Solid knowledge of frameworks such as ITIL 4, COBIT 2019, ISO 31000, GDPR, ISO 27001, and NIST.
• Proven experience in IT General Controls and IT/Information Security Risk Management.
• Relevant certifications such as CRISC, CISA, or CISM are a plus.
• HBO/WO-level education or operating level, preferably with a completed degree in Information Technology, Information Security, General Security, or Business Administration. This is a pre.
• Excellent social and communication skills, with the ability to build and maintain an internal and external network.
• Demonstrated ability to identify trends, developments, and opportunities in the market and translate them into actionable insights for TenneT.
• High proficiency in English, Dutch is not mandatory.

You will be driving the strategic standardization and centralization of IT risk management practices across all TenneT departments, fostering synergy and ensuring a unified approach where all units prioritize IT risk management and compliance with the same level of importance as BTO. Ideal candidates will have experience in a similar position within a Big 4 consultancy firm or other reputable consultancy/advisory organizations, bringing strong expertise in advising on IT risk management, compliance, and process standardization. By the end of the assignment, the strategic risk management plan will be updated, ensuring that all risks and compliance measures are current. Additionally, the compliance overview will be enhanced, and valuable insights and vulnerabilities will be identified and delivered to strengthen the organization’s risk management framework

Soft skills:
• Proactive
• Great communicator
• Open minded and flexible
• Ambitious and driven
• Involved and motivated

Good to know:
• The role is hybrid. 1 x fixed office day, currently Thursday but that might change. Flexibility is expected.
• There will be 2 interviews: 1 x online and 1 x onsite
• Team: 6 members, international, diverse, with a flat hierarchy.
• The candidate is expected to use their own laptop for this role.
• The rate depends on the expertise and skills of the candidate.
• At entry, TenneT performs a Pre-Employment Screening.

Additional information:
• Suppliers must be aware of the laws and regulations regarding employment conditions and Tennet’s Collective Labour Agreement. This assignment is placed in scale 9.
• We would like to receive the personal motivation of the candidate and CV in English or Dutch.

Screening:
• Pre-employment screening: If the candidate is selected to start, a pre-employment screening will be executed. We will send you the required documents to be filled in and returned as soon as possible. Your candidate is only allowed to start after the pre-employment screening has been completed successfully. The VOG Application is part of the screening. The VOG must be received before the candidate could start;
• All submitted candidates must be in possession of a valid Passport or ID card, which must be taken along to the interview and at the start of the assignment.
Availability:
• Important, the candidate has to be available throughout the entire duration of the assignment;
• By submitting a candidate, you are agreeing to the terms of this specific client. If you are not familiar with these terms, you can ask our recruiters for a copy.