Business Information Security Officer (BISO)

Do you want to play a hands-on role in keeping PwC Netherlands secure every day? Are you energized by working across vulnerability management, monitoring, and incident response in one varied role? 

In this role you'll help run and improve PwC NL's security operations, from tracking vulnerabilities and reviewing monitoring outputs to managing security exceptions and following up on findings in tools like Wiz and BitSight. You'll work closely with internal technology teams and the CISO office, with direct visibility on the firm's security posture. It's a role where structured operational work and curiosity about new tools and AI go hand in hand. 

This is what you'll do 

You'll join the CISO office, a team of five informal and ambitious colleagues working on firm-wide security topics. You'll report to the Technical Information Security Officer (TISO), and collaborate closely with internal technology teams, control owners, and the wider CISO office. 

In this role, you'll support the day-to-day operational security of PwC NL. You'll help track vulnerabilities through identification and reporting to remediation, contribute to incident triage and investigation, and review monitoring outputs to spot unusual activity or control gaps. You'll also manage the security exception process and follow up on findings in our key security posture platforms. It's a varied operational role where keeping clear records, managing recurring tasks, and prioritizing risk all come together. 

• Support and coordinate the vulnerability and patch management process, tracking findings and following up on remediation within agreed timelines. 

• Contribute to incident management by supporting triage, investigation, escalation, documentation, and follow-up of security incidents and operational events. 

• Monitor and review security logging and monitoring outputs, perform operational follow-up in platforms such as Wiz and BitSight, and route findings to the right owners through to closure. 

• Manage and maintain the security exception management process, including registration, risk review, stakeholder follow-up, and periodic reassessment. 

• Support overall security hygiene by following up on baseline control weaknesses, configuration issues, outdated assets, and access reviews. 

You recognize yourself in this 

You work in a proactive way, take ownership of issues until they're resolved, and communicate clearly with both technical and non-technical stakeholders. You enjoy structured operational work and stay curious about new tools and how AI can improve day-to-day operations. 

• 2+ years of hands-on experience in security operations, IT security, or equivalent IT function. 

• Familiarity with vulnerability management, patching, logging and monitoring (ideally in a SOC or NOC environment), and incident classification and response workflows. 

• Solid understanding of core IT infrastructure, networking, and information security concepts (e.g., firewalls, identity management, encryption, access control). 

• Basic scripting in Python or PowerShell is a strong plus, as are security certificates such as Security+, ISC2 CC, or equivalent. 

• Strong problem-solving mindset, able to break down complex problems and translate this to actionable insights for both technical and non-technical stakeholders. 

What we offer 

With us you get the chance to be yourself, bring out the best in yourself in a high-performance organization, and grow within our global network. We offer you, among other things: 

• A competitive salary in line with your experience, an annual bonus (depending on results and personal development), and the opportunity to grow further in your career; 

• A motivating work environment where collaboration with ambitious colleagues and recognition of your contributions are central; 

• A wide range of tailor-made training programs focused on professional growth and leadership development; 

• Access to various mobility providers (OV) via one convenient app for your business and commuting travel; 

• 32 vacation days and the option to purchase additional leave; 

• At PwC, your well-being is our priority. That's why we offer a personal well-being budget to support your physical and mental health, as well as access to the well-being platform OpenUp; 

• You'll work on challenging and meaningful projects, use leading technology including AI tools, learn from the best, and receive coaching support. Together we work as an inclusive team to make real impact; 

• The flexibility of hybrid working, including a fully equipped home office and a monthly net expense allowance for internet and other costs; 

• Curious about everything else we have to offer? Discover all our benefits and extras on our website. 

Getting started at PwC 

Excited? We'd love to receive your motivation letter, transcript, and CV showing why you're the right fit for this role. Apply directly! 

After your application: 

• You'll receive an immediate confirmation in your inbox; 

• If your qualifications match this role, we'll contact you within two weeks for a short introductory conversation; 

• If everyone is enthusiastic, we'll schedule a screening. Depending on the outcome, you'll receive an invitation for a first interview. Click here for more information about the application procedure. 

Would you like more information about the role at PwC? Peter de Vries is happy to talk with you by email. 
 

Peter de Vries – Lead Recruiter  
[email protected]