NLEN
Home Knowledge Base ISO 27001 NIS2 DORA GRC Platform About us Careers Contact
Home Careers
2 openstaande posities

Join us: Help shape the future of cybersecurity compliance. Join our growing team

Our office is located in Veenendaal, in the heart of the Dutch Foodvalley region. Work from Veenendaal or hybrid with our clients throughout the Netherlands and build the future of cybersecurity compliance together with us.

We are growing from 5 to 20 people. Are you the specialist who makes the difference?

Open positions

Strengthen our team

We're looking for people who fit with who we are — not just what we need right now. Quality always comes first.

Senior

Senior Security Consultant

Fulltime · Hybrid 5+ years' experience Netherlands
€5,600 – €7,200 gross/month
This is not a standard consulting vacancy. Join us — we are looking for someone who can dive deep — someone who understands why an ISMS fails, who can convince a board of directors and challenge a technical team at the same time. Someone who not only applies frameworks, but understands them, evaluates them and knows how to translate them to clients.

The role

As a Senior Security Consultant, you'll be responsible for the complete delivery and quality of our most complex assignments. You work independently with clients, direct junior consultants on a project basis and actively contribute to positioning iso2700x.com as a knowledge partner.

You're the point of contact for management at client organisations and know how to operate at that level: strategically, clearly and with authority.

What will you do?

Advice & Implementation
  • Independently lead and deliver ISO 27001, NIS2, DORA and GDPR engagements from A to Z
  • Carry out in-depth risk analysis and threat assessments, including threat modelling
  • Develop and review ISMS documentation: policy, procedures, work instructions, risk registers
  • Guide clients in setting up and embedding a functional ISMS — not just on paper, but in practice
  • Conduct and lead internal audits, gap analyses and management reviews
  • Advise on complex issues around AI security (ISO 42001), supply chain security and third-party risk
Client Relations & Communication
  • Act as trusted adviser to management, CISOs and board members at client organisations
  • Present findings, risks and recommendations at C-level — clearly, substantiated and persuasively
  • Independently drafting proposals and project scopes for new engagements
  • Identify and develop follow-on opportunities with existing clients
Knowledge Development & Platform
  • Help shape the development of our Compli GRC platform
  • Contribute to knowledge articles, templates and methodologies
  • Mentor and coach junior colleagues

Your profile

Knowledge & Experience
  • Minimum 5 years of proven experience in information security and/or GRC consultancy
  • In-depth knowledge of ISO 27001 (implementation and auditing), including the 2022 revision and Annex A controls
  • Working knowledge of NIS2 (including sector-specific requirements), DORA and GDPR
  • Experience with risk methodologies such as ISO 27005, FAIR or comparable approaches
  • Proven experience leading ISO 27001 certification engagements to successful certification
  • Knowledge of security architecture, IAM, network security and/or cloud security is a strong plus
Certifications
ISO 27001 Lead Implementer / Lead AuditorRequired
CISSP, CISM or CISAStrongly desired
ISO 27005 Risk Manager / CRISC
ISO 42001 / NIS2 / DORA expertise

What do we offer you?

€5,600 – €7,200 gross/month

Full-time, depending on experience and certifications

Hybrid Work

Your choice of remote and office

27 holiday days

Based on full-time employment

Generous training budget

Certifications, courses and industry conferences

Laptop & Smartphone

Provided by the company

Grow with the company

From 5 to 20 people in three years

Ready to apply?

Send your CV and a brief motivation to info@iso2700x.com. Informal is fine — we're interested in who you are. No recruiters please.

Apply now →
Junior

Junior Information Security Consultant

Fulltime · Hybrid 0–3 years' experience Netherlands
€2,800 – €4,200 gross/month
Would you like to work at one of the fastest-growing cybersecurity startups in the Netherlands? Are you ready to dive into real ISO 27001, NIS2, DORA and AI governance projects, and do you want to do this in a team that is just as passionate as you? Then you might be exactly who we are looking for.

You'll work on compliance and security engagements with our mid-market clients. Initially you'll always do this together with an experienced colleague; you'll receive good guidance and grow quickly into your own responsibilities.

  • Develop and manage project plans for ISO 27001 and NIS2 certification engagements
  • Conduct baseline assessments and risk analysis at client organisations
  • Track and explain compliance documentation in our GRC platform
  • Prepare and conduct audit interviews
  • Organise awareness sessions and security workshops
  • Contribute to the development of our Compli GRC system
  • Conduct internal audits and formulate improvement recommendations
  • University or tertiary diploma in Cybersecurity, Business & IT, Computer Science or comparable
  • 0–3 years' experience in information security or compliance (internship experience counts)
  • You can communicate clearly — both to directors and IT managers
  • Analytical, meticulous and independent, but also a true team player
    • Fluent Dutch; working knowledge of English
  • Bonus: affinity with GRC tooling, auditing or security frameworks such as ISO 27001 or NIS2
€2,800 – €4,200 gross/month

Full-time, depending on experience

Personal Mentoring

You're never thrown in the deep end

Hybrid Work

Combination of remote and office, by agreement

25 holiday days

Based on full-time employment

Training Budget

Space for your own professional development and certifications

Grow with the company

Direct impact, short lines of communication, real responsibility

Do you recognise yourself in this role?

Send your CV and a brief motivation to info@iso2700x.com. Informal is fine. No recruiters — we handle it ourselves.

Apply now →
Why iso2700x

A startup, but different

Let's be honest: this is a startup. That means not everything is always perfectly organised. But it also means you'll learn more in one year here than elsewhere in three.

Quality over speed

We take the time for the right conversation and the right approach. No short-term thinking, no quick fixes.

Direct Impact

Your work has direct impact. Your ideas are heard. You are not a number in a large office.

A real team

No bureaucracy, no endless meeting culture. Short lines of communication, friendly, direct and driven — without the corporate nonsense.

No suitable vacancy? Send us a message anyway.

We are always looking for talent that fits who we are. Send an open application and we will get in touch if there is a match.

Send an open application →