Head of Governance, Risk and Compliance

AkzoNobel

  • Amsterdam, Noord-Holland
  • Vast
  • Voltijds
  • 29 dagen geleden
About AkzoNobelSince 1792, we've been supplying the innovative paints and coatings that help to color people's lives and protect what matters most. Our world class portfolio of brands - including Dulux, International, Sikkens and Interpon - is trusted by customers around the globe. We're active in more than 150 countries and use our expertise to sustain and enhance the fabric of everyday life. Because we believe every surface is an opportunity. It's what you'd expect from a pioneering and long-established paints company that's dedicated to providing sustainable solutions and preserving the best of what we have today - while creating an even better tomorrow. Let's paint the future together.For more information please visit© 2024 Akzo Nobel N.V. All rights reserved.About the roleAkzoNobel is seeking a Head of Governance, Risk and Compliance to lead our cyber risk management and compliance strategy. Reporting to the CISO, you will oversee the development, implementation, and continuous improvement of security governance, ensuring regulatory alignment and risk transparency across the organization.Key responsibilities
  • Lead the end-to-end Cyber Risk Management Process, ensuring it is maintained, updated, and embedded in operations.
  • Own and maintain the Cyber Risk Register, ensuring accuracy and timely reporting to CISO, CIO, ExCo, and auditors.
  • Manage the lifecycle of Information and Cyber Security policies and standards, aligning with regulatory and risk changes.
  • Oversee compliance monitoring across the enterprise and third parties, reporting on maturity levels and control effectiveness.
  • Define and track Cyber Security Key Risk Indicators (KRIs), producing regular risk exposure reports for senior stakeholders.
  • Support internal and external cybersecurity audits, providing documentation, evidence, and subject matter input.
  • Act as AkzoNobel's representative in national and international risk management working groups.
  • Collaborate cross-functionally with Legal, Audit, Internal Control, and external auditors.
Job requirements
  • Bachelor's or Master's degree in Cybersecurity, Computer Science, or equivalent experience.
  • 5+ years of experience in cybersecurity GRC or risk leadership roles.
  • Deep knowledge of GRC frameworks and compliance standards (ISO/IEC 27001, NIST CSF, CIS, NIS2, SOC 1/2).
  • Familiarity with OT/ICS security standards (e.g., IEC 62443, NIST SP 800-82).
  • Strong understanding of IT infrastructure and cloud environments.
  • Experience managing policies, KRIs, and risk reporting at the executive level.
  • Proven leadership and stakeholder engagement skills in global, cross-functional settings.
  • Certifications such as CISM, CRISC, or CISA are a strong plus.
What we offer
  • Competitive salary, plus travel expenses to and from work.
  • 12.5% performance bonus.
  • 30 holidays.
  • 8% vacation allowance.
  • Hybrid work option (3 days office, 2 days home office, per week).
  • Training opportunities that will help you grow beyond this position.
At AkzoNobel we are highly committed to ensuring an inclusive and respectful workplace where all employees can be their best self. We strive to embrace diversity in a context of tolerance. Our talent acquisition process plays an integral part in this journey, as setting the foundations for a diverse environment. For this reason we train and educate on the implications of our Unconscious Bias in order for our TA and hiring managers to be mindful of them and take corrective actions when applicable. In our organization, all qualified applicants receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age or disability.Requisition ID: 48281

AkzoNobel